Search

Find a vulnerability

Search criteria

    2408 vulnerabilities by juniper

    CVE-2026-57028 (GCVE-0-2026-57028)

    Vulnerability from nvd – Published: 2026-07-09 21:08 – Updated: 2026-07-10 14:37
    VLAI
    Title
    Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker
    Summary
    An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause license exhaustion. Due to an incorrect initialization, a process which should only be able to communicate internally within the device, can be reached over the network via an open port. This leads to unauthorized access to the license management. This issue affects all Junos OS Evolved versions before 23.2R2-EVO.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-923 - Improper Restriction of Communication Channel to Intended Endpoints
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Evolved Affected: 0 , < 23.2R2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-57028",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T14:37:11.630273Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T14:37:21.433Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "23.2R2-EVO",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause license exhaustion\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e.\u003cbr\u003e\u003c/span\u003e\u003c/p\u003e\u003cp\u003eDue to an incorrect initialization, a process which should only be able to communicate internally within the device, can be reached over the network via an open port. This leads to unauthorized access to the license management.\u003c/p\u003e\u003cp\u003eThis issue affects all Junos OS Evolved versions before 23.2R2-EVO.\u003cbr\u003e\u003cbr\u003e\u003c/p\u003e"
                }
              ],
              "value": "An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause license exhaustion.\n\n\nDue to an incorrect initialization, a process which should only be able to communicate internally within the device, can be reached over the network via an open port. This leads to unauthorized access to the license management.\n\nThis issue affects all Junos OS Evolved versions before 23.2R2-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "USER",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/AU:Y/R:U/RE:M",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-923",
                  "description": "CWE-923 Improper Restriction of Communication Channel to Intended Endpoints",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:08:25.702Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110088"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS Evolved: 23.2R2-EVO, 23.4R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS Evolved: 23.2R2-EVO, 23.4R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110088",
            "defect": [
              "1729581"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue.\u003cbr\u003e\u003cbr\u003e\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ePlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed.\u003c/span\u003e\n\n\u003cbr\u003e"
                }
              ],
              "value": "There are no known workarounds for this issue.\n\n\n\nPlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-57028",
        "datePublished": "2026-07-09T21:08:25.702Z",
        "dateReserved": "2026-06-23T16:27:00.248Z",
        "dateUpdated": "2026-07-10T14:37:21.433Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33803 (GCVE-0-2026-33803)

    Vulnerability from nvd – Published: 2026-07-09 21:04 – Updated: 2026-07-10 13:30
    VLAI
    Title
    Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker
    Summary
    An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device. Due to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets. This issue affects Junos OS Evolved: * all versions before 23.2R2-S7-EVO, * 23.4 versions before 23.4R2-S8-EVO, * 24.2 versions before 24.2R2-S5-EVO, * 24.4 versions before 24.4R2-S4-EVO, * 25.2 versions before 25.2R2-S1-EVO, * 25.4 versions before 25.4R1-S2-EVO.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-923 - Improper Restriction of Communication Channel to Intended Endpoints
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Evolved Affected: 0 , < 23.2R2-S7-EVO (custom)
    Affected: 23.4 , < 23.4R2-S8-EVO (custom)
    Affected: 24.2 , < 24.2R2-S5-EVO (custom)
    Affected: 24.4 , < 24.4R2-S4-EVO (custom)
    Affected: 25.2 , < 25.2R2-S1-EVO (custom)
    Affected: 25.4 , < 25.4R1-S2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33803",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T13:30:15.593698Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T13:30:26.315Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "23.2R2-S7-EVO",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.4R2-S8-EVO",
                  "status": "affected",
                  "version": "23.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "24.2R2-S5-EVO",
                  "status": "affected",
                  "version": "24.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "24.4R2-S4-EVO",
                  "status": "affected",
                  "version": "24.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "25.2R2-S1-EVO",
                  "status": "affected",
                  "version": "25.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "25.4R1-S2-EVO",
                  "status": "affected",
                  "version": "25.4",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e.\u003cbr\u003e\u003c/span\u003e\u003c/p\u003e\u003cp\u003eDue to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets.\u003c/p\u003e\u003cp\u003eThis issue affects Junos OS Evolved:\u003cbr\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003eall versions before 23.2R2-S7-EVO,\u003c/li\u003e\u003cli\u003e23.4 versions before 23.4R2-S8-EVO,\u003c/li\u003e\u003cli\u003e24.2 versions before 24.2R2-S5-EVO,\u003c/li\u003e\u003cli\u003e24.4 versions before 24.4R2-S4-EVO,\u003c/li\u003e\u003cli\u003e25.2 versions before 25.2R2-S1-EVO,\u003c/li\u003e\u003cli\u003e25.4 versions before 25.4R1-S2-EVO.\u003c/li\u003e\u003c/ul\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device.\n\n\nDue to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets.\n\nThis issue affects Junos OS Evolved:\n\n\n  *  all versions before 23.2R2-S7-EVO,\n  *  23.4 versions before 23.4R2-S8-EVO,\n  *  24.2 versions before 24.2R2-S5-EVO,\n  *  24.4 versions before 24.4R2-S4-EVO,\n  *  25.2 versions before 25.2R2-S1-EVO,\n  *  25.4 versions before 25.4R1-S2-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "USER",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/AU:Y/R:U/RE:M",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-923",
                  "description": "CWE-923 Improper Restriction of Communication Channel to Intended Endpoints",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:04:14.997Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110078"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue: Junos OS Evolved: 23.2R2-S7-EVO, 23.4R2-S8-EVO, 24.2R2-S5-EVO, 24.4R2-S4-EVO, 25.2R2-S1-EVO, 25.4R1-S2-EVO, 25.4R2-EVO, 26.2R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue: Junos OS Evolved: 23.2R2-S7-EVO, 23.4R2-S8-EVO, 24.2R2-S5-EVO, 24.4R2-S4-EVO, 25.2R2-S1-EVO, 25.4R1-S2-EVO, 25.4R2-EVO, 26.2R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110078",
            "defect": [
              "1909908"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue.\u003cbr\u003e\u003cbr\u003ePlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed."
                }
              ],
              "value": "There are no known workarounds for this issue.\n\nPlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-33803",
        "datePublished": "2026-07-09T21:04:14.997Z",
        "dateReserved": "2026-03-23T19:46:13.674Z",
        "dateUpdated": "2026-07-10T13:30:26.315Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33801 (GCVE-0-2026-33801)

    Vulnerability from nvd – Published: 2026-07-09 21:03 – Updated: 2026-07-10 13:31
    VLAI
    Title
    Junos OS and Junos OS Evolved: When a specifically malformed BGP route update is received RPD crashes
    Summary
    An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS). Upon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation. This issue affects: * Junos OS versions 25.2 before 25.2R2; * Junos OS Evolved versions 25.2 before 25.2R2-EVO. This issue doesn't affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-754 - Improper Check for Unusual or Exceptional Conditions
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Affected: 25.2 , < 25.2R2 (custom)
    Create a notification for this product.
    Juniper Networks Junos OS Evolved Affected: 25.2 , < 25.2R2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33801",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T13:30:53.472301Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T13:31:03.248Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "25.2R2",
                  "status": "affected",
                  "version": "25.2",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "25.2R2-EVO",
                  "status": "affected",
                  "version": "25.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS).\u003cbr\u003e\u003cbr\u003e\u003cp\u003eUpon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation.\u003c/p\u003e\u003cp\u003e\u003cbr\u003eThis issue affects:\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003eJunos OS versions 25.2 before 25.2R2;\u003c/li\u003e\u003c/ul\u003e\u003cul\u003e\u003cli\u003eJunos OS Evolved versions 25.2 before 25.2R2-EVO.\u003c/li\u003e\u003c/ul\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue doesn\u0027t affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO.\u003c/p\u003e"
                }
              ],
              "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS).\n\nUpon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation.\n\n\nThis issue affects:\n\n\n\n  *  Junos OS versions 25.2 before 25.2R2;\n\n\n  *  Junos OS Evolved versions 25.2 before 25.2R2-EVO.\n\n\n\n\nThis issue doesn\u0027t affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "AUTOMATIC",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "ADJACENT",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "LOW",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:A/RE:M",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-754",
                  "description": "CWE-754 Improper Check for Unusual or Exceptional Conditions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:03:24.796Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110076"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue:\u003cbr\u003eJunos OS: 25.2R2, 25.4R1, and all subsequent releases.\u003cbr\u003eJunos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue:\nJunos OS: 25.2R2, 25.4R1, and all subsequent releases.\nJunos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110076",
            "defect": [
              "1907528"
            ],
            "discovery": "USER"
          },
          "title": "Junos OS and Junos OS Evolved: When a specifically malformed BGP route update is received RPD crashes",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue."
                }
              ],
              "value": "There are no known workarounds for this issue."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-33801",
        "datePublished": "2026-07-09T21:03:24.796Z",
        "dateReserved": "2026-03-23T19:46:13.673Z",
        "dateUpdated": "2026-07-10T13:31:03.248Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33799 (GCVE-0-2026-33799)

    Vulnerability from nvd – Published: 2026-07-09 21:02 – Updated: 2026-07-10 13:31
    VLAI
    Title
    Junos OS and Junos OS Evolved: Receipt of a specific SNMPv3 request results in memory leak and eventual snmpd crash
    Summary
    An Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd process memory exhaustion, resulting in a process crash and restart, impacting the ability to monitor the system via SNMP. Memory usage can be monitored using the following command: user@device> show system processes extensive | match snmpd This issue affects: Junos OS: * all versions before 21.2R3-S8; * from 21.4 before 21.4R3-S7; * from 22.1 before 22.1R3-S6; * from 22.2 before 22.2R3-S4; * from 22.3 before 22.3R3-S3; * from 22.4 before 22.4R3-S2; * from 23.2 before 23.2R2; * from 23.4 before 23.4R2. Junos OS Evolved: * all versions before 21.2R3-S8-EVO; * from 21.4 before 21.4R3-S7-EVO; * all versions of 22.1-EVO, * from 22.2 before 22.2R3-S4-EVO; * from 22.3 before 22.3R3-S3-EVO; * all versions of 22.4-EVO, * from 23.2 before 23.2R2-EVO; * from 23.4 before 23.4R2-EVO.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Affected: 0 , < 21.2R3-S8 (custom)
    Affected: 21.4 , < 21.4R3-S7 (custom)
    Affected: 22.1 , < 22.1R3-S6 (custom)
    Affected: 22.2 , < 22.2R3-S4 (custom)
    Affected: 22.3 , < 22.3R3-S3 (custom)
    Affected: 22.4 , < 22.4R3-S2 (custom)
    Affected: 23.2 , < 23.2R2 (custom)
    Affected: 23.4 , < 23.4R2 (custom)
    Create a notification for this product.
    Juniper Networks Junos OS Evolved Affected: 0 , < 21.2R3-S8-EVO (custom)
    Affected: 21.4 , < 21.4R3-S7-EVO (custom)
    Affected: 22.1 , < 22.1* (custom)
    Affected: 22.2 , < 22.2R3-S4-EVO (custom)
    Affected: 22.3 , < 22.3R3-S3-EVO (custom)
    Affected: 22.4 , < 22.4* (custom)
    Affected: 23.2 , < 23.2R2-EVO (custom)
    Affected: 23.4 , < 23.4R2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33799",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T13:31:41.445568Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T13:31:54.447Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "21.2R3-S8",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "21.4R3-S7",
                  "status": "affected",
                  "version": "21.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.1R3-S6",
                  "status": "affected",
                  "version": "22.1",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.2R3-S4",
                  "status": "affected",
                  "version": "22.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.3R3-S3",
                  "status": "affected",
                  "version": "22.3",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.4R3-S2",
                  "status": "affected",
                  "version": "22.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.2R2",
                  "status": "affected",
                  "version": "23.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.4R2",
                  "status": "affected",
                  "version": "23.4",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "21.2R3-S8-EVO",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "21.4R3-S7-EVO",
                  "status": "affected",
                  "version": "21.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.1*",
                  "status": "affected",
                  "version": "22.1",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.2R3-S4-EVO",
                  "status": "affected",
                  "version": "22.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.3R3-S3-EVO",
                  "status": "affected",
                  "version": "22.3",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.4*",
                  "status": "affected",
                  "version": "22.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.2R2-EVO",
                  "status": "affected",
                  "version": "23.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.4R2-EVO",
                  "status": "affected",
                  "version": "23.4",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This issue requires that SNMPv3 be configured. For example:\u003cbr\u003e\u003cbr\u003e\u003ctt\u003e[snmp engine-id use-default-ip-address]\u003cbr\u003e[snmp v3 usm local-engine user \u0026lt;username\u0026gt; authentication-\u0026lt;method\u0026gt; ...]\u003cbr\u003e[snmp v3 vacm security-to-group security-model usm security-name \u0026lt;name\u0026gt; group \u0026lt;group\u0026gt;]\u003cbr\u003e[snmp v3 vacm access group \u0026lt;group\u0026gt; default-context-prefix security-model usm security-level \u0026lt;level\u0026gt; ...]\u003c/tt\u003e"
                }
              ],
              "value": "This issue requires that SNMPv3 be configured. For example:\n\n[snmp engine-id use-default-ip-address]\n[snmp v3 usm local-engine user \u003cusername\u003e authentication-\u003cmethod\u003e ...]\n[snmp v3 vacm security-to-group security-model usm security-name \u003cname\u003e group \u003cgroup\u003e]\n[snmp v3 vacm access group \u003cgroup\u003e default-context-prefix security-model usm security-level \u003clevel\u003e ...]"
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd process memory exhaustion, resulting in a process crash and restart, impacting the ability to monitor the system via SNMP.\u003cbr\u003e\u003cbr\u003eMemory usage can be monitored using the following command:\u003cbr\u003e\u003cbr\u003e\u003ctt\u003euser@device\u0026gt; show system processes extensive | match snmpd\u003c/tt\u003e\u003cp\u003e\n\n\u003c/p\u003e\u003cp\u003e\u003cbr\u003eThis issue affects:\u003c/p\u003e\u003cp\u003eJunos OS:\u003cbr\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003eall versions before 21.2R3-S8;\u003c/li\u003e\u003cli\u003efrom 21.4 before 21.4R3-S7;\u003c/li\u003e\u003cli\u003efrom 22.1 before 22.1R3-S6;\u003c/li\u003e\u003cli\u003efrom 22.2 before 22.2R3-S4;\u003c/li\u003e\u003cli\u003efrom 22.3 before 22.3R3-S3;\u003c/li\u003e\u003cli\u003efrom 22.4 before 22.4R3-S2;\u003c/li\u003e\u003cli\u003efrom 23.2 before 23.2R2;\u003c/li\u003e\u003cli\u003efrom 23.4 before 23.4R2.\u003c/li\u003e\u003c/ul\u003e\u003cbr\u003eJunos OS Evolved:\u003cbr\u003e\u003cul\u003e\u003cli\u003eall versions before 21.2R3-S8-EVO;\u003c/li\u003e\u003cli\u003efrom 21.4 before 21.4R3-S7-EVO;\u003c/li\u003e\u003cli\u003eall versions of 22.1-EVO,\u003c/li\u003e\u003cli\u003efrom 22.2 before 22.2R3-S4-EVO;\u003c/li\u003e\u003cli\u003efrom 22.3 before 22.3R3-S3-EVO;\u003c/li\u003e\u003cli\u003eall versions of 22.4-EVO,\u003c/li\u003e\u003cli\u003efrom 23.2 before 23.2R2-EVO;\u003c/li\u003e\u003cli\u003efrom 23.4 before 23.4R2-EVO.\u003c/li\u003e\u003c/ul\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd process memory exhaustion, resulting in a process crash and restart, impacting the ability to monitor the system via SNMP.\n\nMemory usage can be monitored using the following command:\n\nuser@device\u003e show system processes extensive | match snmpd\n\n\n\n\nThis issue affects:\n\nJunos OS:\n\n\n  *  all versions before 21.2R3-S8;\n  *  from 21.4 before 21.4R3-S7;\n  *  from 22.1 before 22.1R3-S6;\n  *  from 22.2 before 22.2R3-S4;\n  *  from 22.3 before 22.3R3-S3;\n  *  from 22.4 before 22.4R3-S2;\n  *  from 23.2 before 23.2R2;\n  *  from 23.4 before 23.4R2.\n\n\n\nJunos OS Evolved:\n  *  all versions before 21.2R3-S8-EVO;\n  *  from 21.4 before 21.4R3-S7-EVO;\n  *  all versions of 22.1-EVO,\n  *  from 22.2 before 22.2R3-S4-EVO;\n  *  from 22.3 before 22.3R3-S3-EVO;\n  *  all versions of 22.4-EVO,\n  *  from 23.2 before 23.2R2-EVO;\n  *  from 23.4 before 23.4R2-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "AUTOMATIC",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "LOW",
                "providerUrgency": "GREEN",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "CONCENTRATED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/AU:Y/R:A/V:C/RE:M/U:Green",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:02:31.614Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110074"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS: 21.2R3-S8, 21.4R3-S7, 22.1R3-S6, 22.2R3-S4, 22.3R3-S3, 22.4R3-S2, 23.2R2, 23.4R2, 24.2R1, and all subsequent releases.\n\u003cbr\u003e\nJunos OS Evolved: 21.2R3-S8-EVO, 21.4R3-S7-EVO, 22.2R3-S4-EVO, 22.3R3-S3-EVO, 23.2R2-EVO, 23.4R2-EVO, 24.2R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS: 21.2R3-S8, 21.4R3-S7, 22.1R3-S6, 22.2R3-S4, 22.3R3-S3, 22.4R3-S2, 23.2R2, 23.4R2, 24.2R1, and all subsequent releases.\n\n\nJunos OS Evolved: 21.2R3-S8-EVO, 21.4R3-S7-EVO, 22.2R3-S4-EVO, 22.3R3-S3-EVO, 23.2R2-EVO, 23.4R2-EVO, 24.2R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110074",
            "defect": [
              "1769065"
            ],
            "discovery": "USER"
          },
          "title": "Junos OS and Junos OS Evolved: Receipt of a specific SNMPv3 request results in memory leak and eventual snmpd crash",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue.\u003cbr\u003e\u003cbr\u003eTo reduce the risk of malicious exploitation, use access lists or firewall filters to limit access to the device via SNMPv3 only from trusted hosts."
                }
              ],
              "value": "There are no known workarounds for this issue.\n\nTo reduce the risk of malicious exploitation, use access lists or firewall filters to limit access to the device via SNMPv3 only from trusted hosts."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-33799",
        "datePublished": "2026-07-09T21:02:31.614Z",
        "dateReserved": "2026-03-23T19:46:13.673Z",
        "dateUpdated": "2026-07-10T13:31:54.447Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-57028 (GCVE-0-2026-57028)

    Vulnerability from cvelistv5 – Published: 2026-07-09 21:08 – Updated: 2026-07-10 14:37
    VLAI
    Title
    Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker
    Summary
    An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause license exhaustion. Due to an incorrect initialization, a process which should only be able to communicate internally within the device, can be reached over the network via an open port. This leads to unauthorized access to the license management. This issue affects all Junos OS Evolved versions before 23.2R2-EVO.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-923 - Improper Restriction of Communication Channel to Intended Endpoints
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Evolved Affected: 0 , < 23.2R2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-57028",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T14:37:11.630273Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T14:37:21.433Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "23.2R2-EVO",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause license exhaustion\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e.\u003cbr\u003e\u003c/span\u003e\u003c/p\u003e\u003cp\u003eDue to an incorrect initialization, a process which should only be able to communicate internally within the device, can be reached over the network via an open port. This leads to unauthorized access to the license management.\u003c/p\u003e\u003cp\u003eThis issue affects all Junos OS Evolved versions before 23.2R2-EVO.\u003cbr\u003e\u003cbr\u003e\u003c/p\u003e"
                }
              ],
              "value": "An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause license exhaustion.\n\n\nDue to an incorrect initialization, a process which should only be able to communicate internally within the device, can be reached over the network via an open port. This leads to unauthorized access to the license management.\n\nThis issue affects all Junos OS Evolved versions before 23.2R2-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "USER",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/AU:Y/R:U/RE:M",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-923",
                  "description": "CWE-923 Improper Restriction of Communication Channel to Intended Endpoints",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:08:25.702Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110088"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS Evolved: 23.2R2-EVO, 23.4R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS Evolved: 23.2R2-EVO, 23.4R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110088",
            "defect": [
              "1729581"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue.\u003cbr\u003e\u003cbr\u003e\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ePlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed.\u003c/span\u003e\n\n\u003cbr\u003e"
                }
              ],
              "value": "There are no known workarounds for this issue.\n\n\n\nPlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-57028",
        "datePublished": "2026-07-09T21:08:25.702Z",
        "dateReserved": "2026-06-23T16:27:00.248Z",
        "dateUpdated": "2026-07-10T14:37:21.433Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33803 (GCVE-0-2026-33803)

    Vulnerability from cvelistv5 – Published: 2026-07-09 21:04 – Updated: 2026-07-10 13:30
    VLAI
    Title
    Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker
    Summary
    An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device. Due to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets. This issue affects Junos OS Evolved: * all versions before 23.2R2-S7-EVO, * 23.4 versions before 23.4R2-S8-EVO, * 24.2 versions before 24.2R2-S5-EVO, * 24.4 versions before 24.4R2-S4-EVO, * 25.2 versions before 25.2R2-S1-EVO, * 25.4 versions before 25.4R1-S2-EVO.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-923 - Improper Restriction of Communication Channel to Intended Endpoints
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Evolved Affected: 0 , < 23.2R2-S7-EVO (custom)
    Affected: 23.4 , < 23.4R2-S8-EVO (custom)
    Affected: 24.2 , < 24.2R2-S5-EVO (custom)
    Affected: 24.4 , < 24.4R2-S4-EVO (custom)
    Affected: 25.2 , < 25.2R2-S1-EVO (custom)
    Affected: 25.4 , < 25.4R1-S2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33803",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T13:30:15.593698Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T13:30:26.315Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "23.2R2-S7-EVO",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.4R2-S8-EVO",
                  "status": "affected",
                  "version": "23.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "24.2R2-S5-EVO",
                  "status": "affected",
                  "version": "24.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "24.4R2-S4-EVO",
                  "status": "affected",
                  "version": "24.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "25.2R2-S1-EVO",
                  "status": "affected",
                  "version": "25.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "25.4R1-S2-EVO",
                  "status": "affected",
                  "version": "25.4",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e.\u003cbr\u003e\u003c/span\u003e\u003c/p\u003e\u003cp\u003eDue to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets.\u003c/p\u003e\u003cp\u003eThis issue affects Junos OS Evolved:\u003cbr\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003eall versions before 23.2R2-S7-EVO,\u003c/li\u003e\u003cli\u003e23.4 versions before 23.4R2-S8-EVO,\u003c/li\u003e\u003cli\u003e24.2 versions before 24.2R2-S5-EVO,\u003c/li\u003e\u003cli\u003e24.4 versions before 24.4R2-S4-EVO,\u003c/li\u003e\u003cli\u003e25.2 versions before 25.2R2-S1-EVO,\u003c/li\u003e\u003cli\u003e25.4 versions before 25.4R1-S2-EVO.\u003c/li\u003e\u003c/ul\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device.\n\n\nDue to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets.\n\nThis issue affects Junos OS Evolved:\n\n\n  *  all versions before 23.2R2-S7-EVO,\n  *  23.4 versions before 23.4R2-S8-EVO,\n  *  24.2 versions before 24.2R2-S5-EVO,\n  *  24.4 versions before 24.4R2-S4-EVO,\n  *  25.2 versions before 25.2R2-S1-EVO,\n  *  25.4 versions before 25.4R1-S2-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "USER",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/AU:Y/R:U/RE:M",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-923",
                  "description": "CWE-923 Improper Restriction of Communication Channel to Intended Endpoints",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:04:14.997Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110078"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue: Junos OS Evolved: 23.2R2-S7-EVO, 23.4R2-S8-EVO, 24.2R2-S5-EVO, 24.4R2-S4-EVO, 25.2R2-S1-EVO, 25.4R1-S2-EVO, 25.4R2-EVO, 26.2R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue: Junos OS Evolved: 23.2R2-S7-EVO, 23.4R2-S8-EVO, 24.2R2-S5-EVO, 24.4R2-S4-EVO, 25.2R2-S1-EVO, 25.4R1-S2-EVO, 25.4R2-EVO, 26.2R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110078",
            "defect": [
              "1909908"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Junos OS Evolved: A port which has been inadvertently exposed can be reached by an attacker",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue.\u003cbr\u003e\u003cbr\u003ePlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed."
                }
              ],
              "value": "There are no known workarounds for this issue.\n\nPlease ensure that your control plane protection only explicitly permits access to ports intended to be reachable and only from authorized endpoints. All other traffic destined to the control plane should be disallowed."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-33803",
        "datePublished": "2026-07-09T21:04:14.997Z",
        "dateReserved": "2026-03-23T19:46:13.674Z",
        "dateUpdated": "2026-07-10T13:30:26.315Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33801 (GCVE-0-2026-33801)

    Vulnerability from cvelistv5 – Published: 2026-07-09 21:03 – Updated: 2026-07-10 13:31
    VLAI
    Title
    Junos OS and Junos OS Evolved: When a specifically malformed BGP route update is received RPD crashes
    Summary
    An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS). Upon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation. This issue affects: * Junos OS versions 25.2 before 25.2R2; * Junos OS Evolved versions 25.2 before 25.2R2-EVO. This issue doesn't affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-754 - Improper Check for Unusual or Exceptional Conditions
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Affected: 25.2 , < 25.2R2 (custom)
    Create a notification for this product.
    Juniper Networks Junos OS Evolved Affected: 25.2 , < 25.2R2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33801",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T13:30:53.472301Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T13:31:03.248Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "25.2R2",
                  "status": "affected",
                  "version": "25.2",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "25.2R2-EVO",
                  "status": "affected",
                  "version": "25.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS).\u003cbr\u003e\u003cbr\u003e\u003cp\u003eUpon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation.\u003c/p\u003e\u003cp\u003e\u003cbr\u003eThis issue affects:\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003eJunos OS versions 25.2 before 25.2R2;\u003c/li\u003e\u003c/ul\u003e\u003cul\u003e\u003cli\u003eJunos OS Evolved versions 25.2 before 25.2R2-EVO.\u003c/li\u003e\u003c/ul\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue doesn\u0027t affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO.\u003c/p\u003e"
                }
              ],
              "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS).\n\nUpon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation.\n\n\nThis issue affects:\n\n\n\n  *  Junos OS versions 25.2 before 25.2R2;\n\n\n  *  Junos OS Evolved versions 25.2 before 25.2R2-EVO.\n\n\n\n\nThis issue doesn\u0027t affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "AUTOMATIC",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "ADJACENT",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "LOW",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:A/RE:M",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-754",
                  "description": "CWE-754 Improper Check for Unusual or Exceptional Conditions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:03:24.796Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110076"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue:\u003cbr\u003eJunos OS: 25.2R2, 25.4R1, and all subsequent releases.\u003cbr\u003eJunos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue:\nJunos OS: 25.2R2, 25.4R1, and all subsequent releases.\nJunos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110076",
            "defect": [
              "1907528"
            ],
            "discovery": "USER"
          },
          "title": "Junos OS and Junos OS Evolved: When a specifically malformed BGP route update is received RPD crashes",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue."
                }
              ],
              "value": "There are no known workarounds for this issue."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-33801",
        "datePublished": "2026-07-09T21:03:24.796Z",
        "dateReserved": "2026-03-23T19:46:13.673Z",
        "dateUpdated": "2026-07-10T13:31:03.248Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-33799 (GCVE-0-2026-33799)

    Vulnerability from cvelistv5 – Published: 2026-07-09 21:02 – Updated: 2026-07-10 13:31
    VLAI
    Title
    Junos OS and Junos OS Evolved: Receipt of a specific SNMPv3 request results in memory leak and eventual snmpd crash
    Summary
    An Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd process memory exhaustion, resulting in a process crash and restart, impacting the ability to monitor the system via SNMP. Memory usage can be monitored using the following command: user@device> show system processes extensive | match snmpd This issue affects: Junos OS: * all versions before 21.2R3-S8; * from 21.4 before 21.4R3-S7; * from 22.1 before 22.1R3-S6; * from 22.2 before 22.2R3-S4; * from 22.3 before 22.3R3-S3; * from 22.4 before 22.4R3-S2; * from 23.2 before 23.2R2; * from 23.4 before 23.4R2. Junos OS Evolved: * all versions before 21.2R3-S8-EVO; * from 21.4 before 21.4R3-S7-EVO; * all versions of 22.1-EVO, * from 22.2 before 22.2R3-S4-EVO; * from 22.3 before 22.3R3-S3-EVO; * all versions of 22.4-EVO, * from 23.2 before 23.2R2-EVO; * from 23.4 before 23.4R2-EVO.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS Affected: 0 , < 21.2R3-S8 (custom)
    Affected: 21.4 , < 21.4R3-S7 (custom)
    Affected: 22.1 , < 22.1R3-S6 (custom)
    Affected: 22.2 , < 22.2R3-S4 (custom)
    Affected: 22.3 , < 22.3R3-S3 (custom)
    Affected: 22.4 , < 22.4R3-S2 (custom)
    Affected: 23.2 , < 23.2R2 (custom)
    Affected: 23.4 , < 23.4R2 (custom)
    Create a notification for this product.
    Juniper Networks Junos OS Evolved Affected: 0 , < 21.2R3-S8-EVO (custom)
    Affected: 21.4 , < 21.4R3-S7-EVO (custom)
    Affected: 22.1 , < 22.1* (custom)
    Affected: 22.2 , < 22.2R3-S4-EVO (custom)
    Affected: 22.3 , < 22.3R3-S3-EVO (custom)
    Affected: 22.4 , < 22.4* (custom)
    Affected: 23.2 , < 23.2R2-EVO (custom)
    Affected: 23.4 , < 23.4R2-EVO (custom)
    Create a notification for this product.
    Date Public
    2026-07-08 16:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-33799",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-10T13:31:41.445568Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-10T13:31:54.447Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "21.2R3-S8",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "21.4R3-S7",
                  "status": "affected",
                  "version": "21.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.1R3-S6",
                  "status": "affected",
                  "version": "22.1",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.2R3-S4",
                  "status": "affected",
                  "version": "22.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.3R3-S3",
                  "status": "affected",
                  "version": "22.3",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.4R3-S2",
                  "status": "affected",
                  "version": "22.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.2R2",
                  "status": "affected",
                  "version": "23.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.4R2",
                  "status": "affected",
                  "version": "23.4",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Junos OS Evolved",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "lessThan": "21.2R3-S8-EVO",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "21.4R3-S7-EVO",
                  "status": "affected",
                  "version": "21.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.1*",
                  "status": "affected",
                  "version": "22.1",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.2R3-S4-EVO",
                  "status": "affected",
                  "version": "22.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.3R3-S3-EVO",
                  "status": "affected",
                  "version": "22.3",
                  "versionType": "custom"
                },
                {
                  "lessThan": "22.4*",
                  "status": "affected",
                  "version": "22.4",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.2R2-EVO",
                  "status": "affected",
                  "version": "23.2",
                  "versionType": "custom"
                },
                {
                  "lessThan": "23.4R2-EVO",
                  "status": "affected",
                  "version": "23.4",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This issue requires that SNMPv3 be configured. For example:\u003cbr\u003e\u003cbr\u003e\u003ctt\u003e[snmp engine-id use-default-ip-address]\u003cbr\u003e[snmp v3 usm local-engine user \u0026lt;username\u0026gt; authentication-\u0026lt;method\u0026gt; ...]\u003cbr\u003e[snmp v3 vacm security-to-group security-model usm security-name \u0026lt;name\u0026gt; group \u0026lt;group\u0026gt;]\u003cbr\u003e[snmp v3 vacm access group \u0026lt;group\u0026gt; default-context-prefix security-model usm security-level \u0026lt;level\u0026gt; ...]\u003c/tt\u003e"
                }
              ],
              "value": "This issue requires that SNMPv3 be configured. For example:\n\n[snmp engine-id use-default-ip-address]\n[snmp v3 usm local-engine user \u003cusername\u003e authentication-\u003cmethod\u003e ...]\n[snmp v3 vacm security-to-group security-model usm security-name \u003cname\u003e group \u003cgroup\u003e]\n[snmp v3 vacm access group \u003cgroup\u003e default-context-prefix security-model usm security-level \u003clevel\u003e ...]"
            }
          ],
          "datePublic": "2026-07-08T16:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd process memory exhaustion, resulting in a process crash and restart, impacting the ability to monitor the system via SNMP.\u003cbr\u003e\u003cbr\u003eMemory usage can be monitored using the following command:\u003cbr\u003e\u003cbr\u003e\u003ctt\u003euser@device\u0026gt; show system processes extensive | match snmpd\u003c/tt\u003e\u003cp\u003e\n\n\u003c/p\u003e\u003cp\u003e\u003cbr\u003eThis issue affects:\u003c/p\u003e\u003cp\u003eJunos OS:\u003cbr\u003e\u003c/p\u003e\u003cul\u003e\u003cli\u003eall versions before 21.2R3-S8;\u003c/li\u003e\u003cli\u003efrom 21.4 before 21.4R3-S7;\u003c/li\u003e\u003cli\u003efrom 22.1 before 22.1R3-S6;\u003c/li\u003e\u003cli\u003efrom 22.2 before 22.2R3-S4;\u003c/li\u003e\u003cli\u003efrom 22.3 before 22.3R3-S3;\u003c/li\u003e\u003cli\u003efrom 22.4 before 22.4R3-S2;\u003c/li\u003e\u003cli\u003efrom 23.2 before 23.2R2;\u003c/li\u003e\u003cli\u003efrom 23.4 before 23.4R2.\u003c/li\u003e\u003c/ul\u003e\u003cbr\u003eJunos OS Evolved:\u003cbr\u003e\u003cul\u003e\u003cli\u003eall versions before 21.2R3-S8-EVO;\u003c/li\u003e\u003cli\u003efrom 21.4 before 21.4R3-S7-EVO;\u003c/li\u003e\u003cli\u003eall versions of 22.1-EVO,\u003c/li\u003e\u003cli\u003efrom 22.2 before 22.2R3-S4-EVO;\u003c/li\u003e\u003cli\u003efrom 22.3 before 22.3R3-S3-EVO;\u003c/li\u003e\u003cli\u003eall versions of 22.4-EVO,\u003c/li\u003e\u003cli\u003efrom 23.2 before 23.2R2-EVO;\u003c/li\u003e\u003cli\u003efrom 23.4 before 23.4R2-EVO.\u003c/li\u003e\u003c/ul\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd process memory exhaustion, resulting in a process crash and restart, impacting the ability to monitor the system via SNMP.\n\nMemory usage can be monitored using the following command:\n\nuser@device\u003e show system processes extensive | match snmpd\n\n\n\n\nThis issue affects:\n\nJunos OS:\n\n\n  *  all versions before 21.2R3-S8;\n  *  from 21.4 before 21.4R3-S7;\n  *  from 22.1 before 22.1R3-S6;\n  *  from 22.2 before 22.2R3-S4;\n  *  from 22.3 before 22.3R3-S3;\n  *  from 22.4 before 22.4R3-S2;\n  *  from 23.2 before 23.2R2;\n  *  from 23.4 before 23.4R2.\n\n\n\nJunos OS Evolved:\n  *  all versions before 21.2R3-S8-EVO;\n  *  from 21.4 before 21.4R3-S7-EVO;\n  *  all versions of 22.1-EVO,\n  *  from 22.2 before 22.2R3-S4-EVO;\n  *  from 22.3 before 22.3R3-S3-EVO;\n  *  all versions of 22.4-EVO,\n  *  from 23.2 before 23.2R2-EVO;\n  *  from 23.4 before 23.4R2-EVO."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
              ],
              "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            },
            {
              "cvssV4_0": {
                "Automatable": "YES",
                "Recovery": "AUTOMATIC",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "LOW",
                "providerUrgency": "GREEN",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "CONCENTRATED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/AU:Y/R:A/V:C/RE:M/U:Green",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-09T21:02:31.614Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://supportportal.juniper.net/JSA110074"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS: 21.2R3-S8, 21.4R3-S7, 22.1R3-S6, 22.2R3-S4, 22.3R3-S3, 22.4R3-S2, 23.2R2, 23.4R2, 24.2R1, and all subsequent releases.\n\u003cbr\u003e\nJunos OS Evolved: 21.2R3-S8-EVO, 21.4R3-S7-EVO, 22.2R3-S4-EVO, 22.3R3-S3-EVO, 23.2R2-EVO, 23.4R2-EVO, 24.2R1-EVO, and all subsequent releases."
                }
              ],
              "value": "The following software releases have been updated to resolve this specific issue:\n\nJunos OS: 21.2R3-S8, 21.4R3-S7, 22.1R3-S6, 22.2R3-S4, 22.3R3-S3, 22.4R3-S2, 23.2R2, 23.4R2, 24.2R1, and all subsequent releases.\n\n\nJunos OS Evolved: 21.2R3-S8-EVO, 21.4R3-S7-EVO, 22.2R3-S4-EVO, 22.3R3-S3-EVO, 23.2R2-EVO, 23.4R2-EVO, 24.2R1-EVO, and all subsequent releases."
            }
          ],
          "source": {
            "advisory": "JSA110074",
            "defect": [
              "1769065"
            ],
            "discovery": "USER"
          },
          "title": "Junos OS and Junos OS Evolved: Receipt of a specific SNMPv3 request results in memory leak and eventual snmpd crash",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "There are no known workarounds for this issue.\u003cbr\u003e\u003cbr\u003eTo reduce the risk of malicious exploitation, use access lists or firewall filters to limit access to the device via SNMPv3 only from trusted hosts."
                }
              ],
              "value": "There are no known workarounds for this issue.\n\nTo reduce the risk of malicious exploitation, use access lists or firewall filters to limit access to the device via SNMPv3 only from trusted hosts."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2026-33799",
        "datePublished": "2026-07-09T21:02:31.614Z",
        "dateReserved": "2026-03-23T19:46:13.673Z",
        "dateUpdated": "2026-07-10T13:31:54.447Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    VAR-200202-0006

    Vulnerability from variot - Updated: 2026-04-10 23:59

    Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available. Multiple vendor SNMPv1 Trap handling implementations contain vulnerabilities that may allow unauthorized privileged access, denial-of-service conditions, or unstable behavior . If your site uses SNMP in any capacity, the CERT/CC encourages you to read the information provided below. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ SNMP Protocol is status and performance information MIB (Management Information Base) Protocol used to exchange Management side SNMP Managers such as managed routers, switches and printers SNMP Communicates with management network devices called agents. Because of its wide acceptance in the market, SNMP Has become the standard for SNMP protocol version1 Is SNMPv1 Is the most widely implemented. this SNMPv1 Sent from the agent to the manager in the implementation of SNMP Trap message and sent from the manager to the agent SNMP Decrypt the request message / There are problems in interpreting. If this problem is used by an attacker, the following actions may be executed. Many other programs that you implement may also be affected because of a protocol problem. On the target host SNMP If the service is running, an attacker could execute arbitrary code ・ If a buffer overflow attack is feasible and a very long trap message SNMP If the host on which the service is running receives, the application may go into a denial of service state The effects described above vary from application to application. For details, refer to each product.Please refer to the “Overview” for the impact of this vulnerability. Windows 95 is prone to a denial-of-service vulnerability. MPE/iX is an Internet-ready operating system for the HP e3000 class servers. It is possible to crash the service by transmitting to it a maliciously constructed SNMPv1 request PDU. It was previously known as UCD-SNMP. They typically notify the manager that some event has occured or otherwise provide information about the status of the agent. Multiple vulnerabilities have been discovered in a number of SNMP implementations. The vulnerabilities are known to exist in the process of decoding and interpreting SNMP trap messages. Among the possible consequences are denial of service and allowing attackers to compromise target systems. These depend on the individual vulnerabilities in each affected product. HP has confirmed that large traps will cause OpenView Network Node Manager to crash. This may be due to an exploitable buffer overflow condition

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "3com",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "adtran",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "american power conversion",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "aprisma",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "bea",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "bmc",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cnt",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "comtek services",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cscare",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cacheflow",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "carrier access",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "compaq computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "computer associates",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "concord",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "dart",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "dell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "digital",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "entrada",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "equinox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "fluke",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "general datacomm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "hirschmann",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "hitachi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "iplanet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "itouch",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "infovista",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "inktomi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "innerdive",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "ipswitch",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "karlnet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "lantronix",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "larscom incorporated",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "lotus",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "lucent",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "mg soft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "marconi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "mercury interactive",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "metrobility optical",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "micromuse",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "monfox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "multinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "net snmp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "network harmoni",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nbase xyplex",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "netscout",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "netsilicon",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "netscape",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "network appliance",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "novell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "openwave",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "optical access",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "perle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "powerware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "radware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "redback",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "riverstone",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "snmp research",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sniffer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sonus",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "symantec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "the sco group sco unix",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "tivoli",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "toshiba",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "unisphere",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "vertical",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "vina",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "world wide packets",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "xerox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "e security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "net com",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "snmp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "snmp",
            "version": "*"
          },
          {
            "_id": null,
            "model": "windows 98se",
            "scope": null,
            "trust": 0.9,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "microsoft",
            "version": "95"
          },
          {
            "_id": null,
            "model": "windows server",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nudesign team",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "outback resource group",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "veritas",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "bintec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "interniche",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ncipher corp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netscreen",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nokia",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "2.6 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "2.6 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "7.0 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "7.0 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "8 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "8 (x86)"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.24"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "windows 2000",
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "95"
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "98"
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "98 scd"
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "me"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "4.0 (server)"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "4.0 (terminal_srv)"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "4.0 (workstation)"
          },
          {
            "_id": null,
            "model": "windows xp",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "sp3"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "windows xp gold",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "microsoft",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "net snmp",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "net snmp",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "net snmp",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "snmp",
            "scope": null,
            "trust": 0.6,
            "vendor": "snmp",
            "version": null
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "net snmp",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "net snmp",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "solaris 8 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris 8 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris 7.0 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "solaris 2.6 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "enterprise server ssp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "100003.5"
          },
          {
            "_id": null,
            "model": "enterprise server ssp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "100003.4"
          },
          {
            "_id": null,
            "model": "enterprise server ssp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "100003.3"
          },
          {
            "_id": null,
            "model": "research mid-level manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snmp",
            "version": "15.3"
          },
          {
            "_id": null,
            "model": "research enterpol",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snmp",
            "version": "15.3"
          },
          {
            "_id": null,
            "model": "research dr-web manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snmp",
            "version": "15.3"
          },
          {
            "_id": null,
            "model": "brocade",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sgi",
            "version": "2.6.0"
          },
          {
            "_id": null,
            "model": "networks aos",
            "scope": null,
            "trust": 0.3,
            "vendor": "redback",
            "version": null
          },
          {
            "_id": null,
            "model": "realplayer intranet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "realnetworks",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "software tcpware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "process",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "software multinet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "process",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1.6.5"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "4.11"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows xp professional",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows xp home",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows nt workstation sp6a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp6a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp6a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "98"
          },
          {
            "_id": null,
            "model": "windows terminal services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows terminal services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows terminal services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows professional sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows professional sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows professional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows datacenter server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "domino snmp agents solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lotus",
            "version": "5.0.1x86"
          },
          {
            "_id": null,
            "model": "domino snmp agents solaris sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lotus",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "domino snmp agents hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lotus",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "lrs",
            "scope": null,
            "trust": 0.3,
            "vendor": "lantronix",
            "version": null
          },
          {
            "_id": null,
            "model": "junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "solutions router ip console",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "innerdive",
            "version": "3.3.0.406"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "secure os software for linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "procurve switch 8000m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 4108gl-bundle",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 4108gl",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 4000m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2525"
          },
          {
            "_id": null,
            "model": "procurve switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2524"
          },
          {
            "_id": null,
            "model": "procurve switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2512"
          },
          {
            "_id": null,
            "model": "procurve switch 2424m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 2400m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 1600m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "ov/sam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "openview network node manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.10"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "openview network node manager nt 4.x/windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.22000"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.211.x"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.210.x"
          },
          {
            "_id": null,
            "model": "openview network node manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.111.x"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.110.x"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openview network node manager nt 4.x/windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.02000"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.011.x"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.010.20"
          },
          {
            "_id": null,
            "model": "openview network node manager windows nt",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0.23.51/4.0"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "openview network node manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.11"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.11"
          },
          {
            "_id": null,
            "model": "openview extensible snmp agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "openview emanate snmp agent solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "14.22.x"
          },
          {
            "_id": null,
            "model": "openview emanate snmp agent hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "14.211.x"
          },
          {
            "_id": null,
            "model": "openview emanate snmp agent hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "14.210.20"
          },
          {
            "_id": null,
            "model": "openview distributed management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openview distributed management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.03"
          },
          {
            "_id": null,
            "model": "mc/serviceguard",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.20.00"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.08.32"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.08.00"
          },
          {
            "_id": null,
            "model": "ito/vpo/ovo unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.24"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "ems a.03.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "ems a.03.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "ems a.03.00",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "services nmserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "comtek",
            "version": "3.4"
          },
          {
            "_id": null,
            "model": "associates unicenter",
            "scope": null,
            "trust": 0.3,
            "vendor": "computer",
            "version": null
          },
          {
            "_id": null,
            "model": "unixware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "unixware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "unixware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "7"
          },
          {
            "_id": null,
            "model": "openunix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "openserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "5.0.6"
          },
          {
            "_id": null,
            "model": "openserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "cacheos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cacheflow",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "cacheos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cacheflow",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "web nms msp edition",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "web nms",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "snmp utilities",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "snmp api",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "mediation server",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "management builder",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "fault management toolkit",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "configuration management toolkit",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "cli api",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "agent toolkit java/jmx edition",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "agent toolkit c edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "webcache",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "webcache",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "1000"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "4900"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "4400"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "3300"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "1100"
          },
          {
            "_id": null,
            "model": "ps hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "50"
          },
          {
            "_id": null,
            "model": "ps hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "40"
          },
          {
            "_id": null,
            "model": "dual speed hub",
            "scope": null,
            "trust": 0.3,
            "vendor": "3com",
            "version": null
          },
          {
            "_id": null,
            "model": "brocade .0d",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "sgi",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "solutions router ip console",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "innerdive",
            "version": "3.3.0.407"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.21.00"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.08.32"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:ibm:aix",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:sun:solaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:hp-ux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:vvos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows_2000",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows-9x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows_nt",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows_xp",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:redhat:linux",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Discovered by the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2002-0012",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2002-0012",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2002-0012",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#107186",
                "trust": 0.8,
                "value": "69.26"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#854306",
                "trust": 0.8,
                "value": "42.64"
              },
              {
                "author": "NVD",
                "id": "CVE-2002-0012",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200202-007",
                "trust": 0.6,
                "value": "CRITICAL"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite.  NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor.  This and other SNMP-related candidates will be updated when more accurate information is available. Multiple vendor SNMPv1 Trap handling implementations contain vulnerabilities that may allow unauthorized privileged access, denial-of-service conditions, or unstable behavior . If your site uses SNMP in any capacity, the CERT/CC encourages you to read the information provided below. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ SNMP Protocol is status and performance information MIB (Management Information Base) Protocol used to exchange Management side SNMP Managers such as managed routers, switches and printers SNMP Communicates with management network devices called agents. Because of its wide acceptance in the market, SNMP Has become the standard for SNMP protocol version1 Is SNMPv1 Is the most widely implemented. this SNMPv1 Sent from the agent to the manager in the implementation of SNMP Trap message and sent from the manager to the agent SNMP Decrypt the request message / There are problems in interpreting. If this problem is used by an attacker, the following actions may be executed. Many other programs that you implement may also be affected because of a protocol problem. On the target host SNMP If the service is running, an attacker could execute arbitrary code \u30fb If a buffer overflow attack is feasible and a very long trap message SNMP If the host on which the service is running receives, the application may go into a denial of service state The effects described above vary from application to application. For details, refer to each product.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Windows 95 is prone to a denial-of-service vulnerability. MPE/iX is an Internet-ready operating system for the HP e3000 class servers.  It is possible to crash the service by transmitting to it a maliciously constructed SNMPv1 request PDU.  It was previously known as UCD-SNMP.  They typically notify the manager that some event has occured or otherwise provide information about the status of the agent. \nMultiple vulnerabilities have been discovered in a number of SNMP implementations.  The vulnerabilities are known to exist in the process of decoding and interpreting SNMP trap messages. \nAmong the possible consequences are denial of service and allowing attackers to compromise target systems.  These depend on the individual vulnerabilities in each affected product. \nHP has confirmed that large traps will cause OpenView Network Node Manager to crash.  This may be due to an exploitable buffer overflow condition",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          },
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          }
        ],
        "trust": 4.68
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2002-0012",
            "trust": 3.9
          },
          {
            "db": "CERT/CC",
            "id": "VU#107186",
            "trust": 3.2
          },
          {
            "db": "BID",
            "id": "4088",
            "trust": 2.2
          },
          {
            "db": "BID",
            "id": "4732",
            "trust": 1.9
          },
          {
            "db": "BID",
            "id": "4089",
            "trust": 1.9
          },
          {
            "db": "BID",
            "id": "4132",
            "trust": 1.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306",
            "trust": 1.4
          },
          {
            "db": "BID",
            "id": "5043",
            "trust": 1.3
          },
          {
            "db": "XF",
            "id": "8177",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "89608",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "89661",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "4203",
            "trust": 0.3
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "id": "VAR-200202-0006",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.489583335
      },
      "last_update_date": "2026-04-10T23:59:45.929000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "HPSBUX00184",
            "trust": 0.8,
            "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00964944"
          },
          {
            "title": "MS02-006",
            "trust": 0.8,
            "url": "http://www.microsoft.com/technet/security/bulletin/ms02-006.mspx"
          },
          {
            "title": "RHSA-2001:163",
            "trust": 0.8,
            "url": "http://rhn.redhat.com/errata/RHSA-2001-163.html"
          },
          {
            "title": "#00215",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-22-00215-1"
          },
          {
            "title": "#00215",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-22-00215-3"
          },
          {
            "title": "IBM Information for VU#107186",
            "trust": 0.8,
            "url": "http://www.kb.cert.org/vuls/id/IAFY-55KRCV"
          },
          {
            "title": "MS02-006",
            "trust": 0.8,
            "url": "http://www.microsoft.com/japan/technet/security/Bulletin/ms02-006.mspx"
          },
          {
            "title": "RHSA-2001:163",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/RHSA/RHSA-2001-163J.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-264",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.0,
            "url": "http://www.cert.org/advisories/ca-2002-03.html"
          },
          {
            "trust": 2.4,
            "url": "http://www.kb.cert.org/vuls/id/107186"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/"
          },
          {
            "trust": 1.6,
            "url": "http://www.cert.org/tech_tips/denial_of_service.html"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc3000.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1212.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1213.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1215.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1270.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2570.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2571.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2572.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2573.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2574.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2575.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2576.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/4088"
          },
          {
            "trust": 1.6,
            "url": "http://online.securityfocus.com/bid/4132"
          },
          {
            "trust": 1.6,
            "url": "http://online.securityfocus.com/bid/4732"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/4089"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/snmpv1/index.html"
          },
          {
            "trust": 1.4,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2002-0012"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/advisories/4211"
          },
          {
            "trust": 1.0,
            "url": "http://www.redhat.com/support/errata/rhsa-2001-163.html"
          },
          {
            "trust": 1.0,
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20020201-01-a"
          },
          {
            "trust": 1.0,
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-006"
          },
          {
            "trust": 1.0,
            "url": "http://www.iss.net/security_center/alerts/advise110.php"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1048"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a161"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a298"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/bid/5043"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a144"
          },
          {
            "trust": 0.8,
            "url": "http://www.ciac.org/ciac/bulletins/m-042.shtml"
          },
          {
            "trust": 0.8,
            "url": "http://www.ipa.go.jp/security/ciadr/20020213snmp.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.jpcert.or.jp/wr/2002/wr020701.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.jpcert.or.jp/wr/2002/wr020901.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.jpcert.or.jp/at/2002/at020001.txt"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnca-2002-03"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2002-0012"
          },
          {
            "trust": 0.8,
            "url": "http://xforce.iss.net/xforce/xfdb/8177"
          },
          {
            "trust": 0.6,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2002-0013"
          },
          {
            "trust": 0.6,
            "url": "http://www.microsoft.com/technet/security/bulletin/ms02-006.asp"
          },
          {
            "trust": 0.6,
            "url": "http://www.kb.cert.org/vuls/id/854306"
          },
          {
            "trust": 0.3,
            "url": "http://online.securityfocus.com/bid/4088"
          },
          {
            "trust": 0.3,
            "url": "http://online.securityfocus.com/bid/4089"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f44605"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f42769"
          },
          {
            "trust": 0.3,
            "url": "http://online.securityfocus.com/news/474"
          },
          {
            "trust": 0.3,
            "url": "http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms02-006.asp"
          },
          {
            "trust": 0.3,
            "url": "http://otn.oracle.com/deploy/security/pdf/snmp_2002_alert.pdf"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#107186",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306",
            "ident": null
          },
          {
            "db": "BID",
            "id": "89608",
            "ident": null
          },
          {
            "db": "BID",
            "id": "89661",
            "ident": null
          },
          {
            "db": "BID",
            "id": "5043",
            "ident": null
          },
          {
            "db": "BID",
            "id": "4732",
            "ident": null
          },
          {
            "db": "BID",
            "id": "4203",
            "ident": null
          },
          {
            "db": "BID",
            "id": "4088",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2002-01-16T00:00:00",
            "db": "CERT/CC",
            "id": "VU#107186",
            "ident": null
          },
          {
            "date": "2002-02-12T00:00:00",
            "db": "CERT/CC",
            "id": "VU#854306",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89608",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89661",
            "ident": null
          },
          {
            "date": "2002-06-18T00:00:00",
            "db": "BID",
            "id": "5043",
            "ident": null
          },
          {
            "date": "2002-05-13T00:00:00",
            "db": "BID",
            "id": "4732",
            "ident": null
          },
          {
            "date": "2002-02-27T00:00:00",
            "db": "BID",
            "id": "4203",
            "ident": null
          },
          {
            "date": "2002-02-12T00:00:00",
            "db": "BID",
            "id": "4088",
            "ident": null
          },
          {
            "date": "2002-02-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "ident": null
          },
          {
            "date": "2002-02-13T05:00:00",
            "db": "NVD",
            "id": "CVE-2002-0012",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2007-11-07T00:00:00",
            "db": "CERT/CC",
            "id": "VU#107186",
            "ident": null
          },
          {
            "date": "2007-11-07T00:00:00",
            "db": "CERT/CC",
            "id": "VU#854306",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89608",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89661",
            "ident": null
          },
          {
            "date": "2009-07-11T13:56:00",
            "db": "BID",
            "id": "5043",
            "ident": null
          },
          {
            "date": "2002-05-13T00:00:00",
            "db": "BID",
            "id": "4732",
            "ident": null
          },
          {
            "date": "2009-07-11T10:56:00",
            "db": "BID",
            "id": "4203",
            "ident": null
          },
          {
            "date": "2009-07-11T10:56:00",
            "db": "BID",
            "id": "4088",
            "ident": null
          },
          {
            "date": "2005-10-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "ident": null
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2002-0012",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          }
        ],
        "trust": 1.8
      },
      "title": {
        "_id": null,
        "data": "Multiple vulnerabilities in SNMPv1 trap handling",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Input Validation Error",
        "sources": [
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201205-0246

    Vulnerability from variot - Updated: 2026-04-10 23:37

    sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that contain a %3D sequence but no = (equals sign) character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the 'd' case. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1823. PHP-CGI-based setups contain a vulnerability when parsing query string parameters from php files. PHP is prone to an information-disclosure vulnerability. Exploiting this issue allows remote attackers to view the source code of files in the context of the server process. This may allow the attacker to obtain sensitive information and to run arbitrary PHP code on the affected computer; other attacks are also possible. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201209-03


                                            http://security.gentoo.org/
    

    Severity: High Title: PHP: Multiple vulnerabilities Date: September 24, 2012 Bugs: #384301, #396311, #396533, #399247, #399567, #399573, #401997, #410957, #414553, #421489, #427354, #429630 ID: 201209-03


    Synopsis

    Multiple vulnerabilities were found in PHP, the worst of which lead to remote execution of arbitrary code.

    Background

    PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML.

    Affected packages

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
    

    1 dev-lang/php < 5.3.15 >= 5.3.15 < 5.4.5 >= 5.4.5 ------------------------------------------------------------------- # Package 1 only applies to users of these architectures: arm

    Description

    Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details.

    Workaround

    There is no known workaround at this time.

    Resolution

    All PHP users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=dev-lang/php-5.3.15"

    All PHP users on ARM should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=dev-lang/php-5.4.5"

    References

    [ 1 ] CVE-2011-1398 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1398 [ 2 ] CVE-2011-3379 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3379 [ 3 ] CVE-2011-4566 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4566 [ 4 ] CVE-2011-4885 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4885 [ 5 ] CVE-2012-0057 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0057 [ 6 ] CVE-2012-0788 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0788 [ 7 ] CVE-2012-0789 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0789 [ 8 ] CVE-2012-0830 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0830 [ 9 ] CVE-2012-0831 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0831 [ 10 ] CVE-2012-1172 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1172 [ 11 ] CVE-2012-1823 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1823 [ 12 ] CVE-2012-2143 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2143 [ 13 ] CVE-2012-2311 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2311 [ 14 ] CVE-2012-2335 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2335 [ 15 ] CVE-2012-2336 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2336 [ 16 ] CVE-2012-2386 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2386 [ 17 ] CVE-2012-2688 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2688 [ 18 ] CVE-2012-3365 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3365 [ 19 ] CVE-2012-3450 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3450

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-201209-03.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5 . HP System Management Homepage (SMH) v7.2.0 and earlier running on Linux and Windows. ----------------------------------------------------------------------

    Become a PSI 3.0 beta tester! Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface. Download it here! http://secunia.com/psi_30_beta_launch


    TITLE: Ubuntu update for php

    SECUNIA ADVISORY ID: SA49097

    VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/49097/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=49097

    RELEASE DATE: 2012-05-07

    DISCUSS ADVISORY: http://secunia.com/advisories/49097/#comments

    AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)

    http://secunia.com/advisories/49097/

    ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS

    https://ca.secunia.com/?page=viewadvisory&vuln_id=49097

    ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING

    http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

    DESCRIPTION: Ubuntu has issued an update for php. This fixes a vulnerability, which can be exploited by malicious people to disclose certain sensitive information or compromise a vulnerable system.

    For more information: SA49014

    SOLUTION: Apply updated packages.

    Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

    ORIGINAL ADVISORY: USN-1437-1: http://www.ubuntu.com/usn/usn-1437-1/

    OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

    DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

    EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

    EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

    EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/


    About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/advisories/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    .

    Additionally, this update fixes insufficient validation of upload name which lead to corrupted $_FILES indices.

    For the stable distribution (squeeze), this problem has been fixed in version 5.3.3-7+squeeze9.

    The testing distribution (wheezy) will be fixed soon.

    For the unstable distribution (sid), this problem has been fixed in version 5.4.3-1.

    We recommend that you upgrade your php5 packages.

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux)

    iQEcBAEBAgAGBQJPqqf3AAoJEOxfUAG2iX57MqcIALyiggqZ6SR+lOtdAd7npKd3 lZ3nXZVUvyC5e4/gageT3s2BlmuipGIrBvyraWR2TvAlNYIu7Ia6EMVsjG0T3gHu iM2yB4+wCaV8CIHqzmyN9lDaotxVty9gQ8BdtJaZguwi9+Sw7KfaCw6CXTluqPkU Ocdb7Saz7eVnNnVwTORxOCBnlIZDn4PbiW9tMLZawGTwNgdT/2lMS8czJGVmf/Oj j4c631zN1K8vlnctHCYQAS269nr9jwmEx0JKcWl5khc7XMi/SmcUG9xG4p5JpGrA ZbBAySyLuxr9bdMA3I9Jqxmmq4uaGwpCH8DSfMJd5FHNXKfq7efnL1Hp5mOERHU= =snJW -----END PGP SIGNATURE-----


    Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03368475

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c03368475 Version: 1

    HPSBUX02791 SSRT100856 rev.1 - HP-UX Apache Web Server running PHP, Remote Execution of Arbitrary Code, Privilege Elevation, Denial of Service (DoS)

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2012-06-14 Last Updated: 2012-06-14

    Potential Security Impact: Remote execution of arbitrary code, privilege elevation, or Denial of Service (DoS).

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP-UX Apache Web Server running PHP. These vulnerabilities could be exploited remotely to execute arbitrary code, elevate privileges, or create a Denial of Service (DoS).

    References: CVE-2011-4153, CVE-2012-0830, CVE-2012-0883, CVE-2012-1172, CVE-2012-1823, CVE-2012-2311

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.23, B.11.31 running HP-UX Apache Web Server Suite v3.24 or earlier

    BACKGROUND For a PGP signed

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2011-4153 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-0830 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-0883 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9 CVE-2012-1172 (AV:N/AC:M/Au:N/C:N/I:P/A:P) 5.8 CVE-2012-1823 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-2311 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has provided the following software updates to resolve the vulnerabilities. The updates are available for download from http://software.hp.com

    HP-UX Web Server Suite v.3.24 containing Apache v2.2.15.13 and PHP v5.2.17 HP-UX 11i Release Apache Depot name

    B.11.23 (32-bit) HPUXWS22ATW-B324-32

    B.11.23 (64-bit) HPUXWS22ATW-B324-64

    B.11.31 (32-bit) HPUXWS22ATW-B324-32

    B.11.31 (64-bit) HPUXWS22ATW-B324-64

    MANUAL ACTIONS: Yes - Update Install HP-UX Web Server Suite v3.24 or subsequent.

    PRODUCT SPECIFIC INFORMATION

    HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa

    The following text is for use by the HP-UX Software Assistant. HP-UX Web Server Suite v3.24 AFFECTED VERSIONS

    HP-UX B.11.23

    hpuxws22APCH32.APACHE hpuxws22APCH32.APACHE2 hpuxws22APCH32.AUTH_LDAP hpuxws22APCH32.AUTH_LDAP2 hpuxws22APCH32.MOD_JK hpuxws22APCH32.MOD_JK2 hpuxws22APCH32.MOD_PERL hpuxws22APCH32.MOD_PERL2 hpuxws22APCH32.PHP hpuxws22APCH32.PHP2 hpuxws22APCH32.WEBPROXY hpuxws22APCH32.WEBPROXY2 hpuxws22APACHE.APACHE hpuxws22APACHE.APACHE2 hpuxws22APACHE.AUTH_LDAP hpuxws22APACHE.AUTH_LDAP2 hpuxws22APACHE.MOD_JK hpuxws22APACHE.MOD_JK2 hpuxws22APACHE.MOD_PERL hpuxws22APACHE.MOD_PERL2 hpuxws22APACHE.PHP hpuxws22APACHE.PHP2 hpuxws22APACHE.WEBPROXY hpuxws22APACHE.WEBPROXY2 action: install revision B.2.2.15.13 or subsequent

    HP-UX B.11.31

    hpuxws22APCH32.APACHE hpuxws22APCH32.APACHE2 hpuxws22APCH32.AUTH_LDAP hpuxws22APCH32.AUTH_LDAP2 hpuxws22APCH32.MOD_JK hpuxws22APCH32.MOD_JK2 hpuxws22APCH32.MOD_PERL hpuxws22APCH32.MOD_PERL2 hpuxws22APCH32.PHP hpuxws22APCH32.PHP2 hpuxws22APCH32.WEBPROXY hpuxws22APCH32.WEBPROXY2 hpuxws22APACHE.APACHE hpuxws22APACHE.APACHE2 hpuxws22APACHE.AUTH_LDAP hpuxws22APACHE.AUTH_LDAP2 hpuxws22APACHE.MOD_JK hpuxws22APACHE.MOD_JK2 hpuxws22APACHE.MOD_PERL hpuxws22APACHE.MOD_PERL2 hpuxws22APACHE.PHP hpuxws22APACHE.PHP2 hpuxws22APACHE.WEBPROXY hpuxws22APACHE.WEBPROXY2

    action: install revision B.2.2.15.13 or subsequent

    END AFFECTED VERSIONS

    HISTORY Version:1 (rev.1) - 14 June 2012 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin List: A list of HP Security Bulletins, updated periodically, is contained in HP Security Notice HPSN-2011-001: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c02964430

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2012 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux)

    iEYEARECAAYFAk/f0GcACgkQ4B86/C0qfVnCEwCfWX2UX+TvBNeJawjexLmPtwjt 1TEAnj7Q3fqZkor5ilSKlW2dNHa1f4aO =pEB+ -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    APPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004

    OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004 are now available and address the following:

    Apache Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Multiple vulnerabilities in Apache Description: Apache is updated to version 2.2.22 to address several vulnerabilities, the most serious of which may lead to a denial of service. Further information is available via the Apache web site at http://httpd.apache.org/. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2011-3368 CVE-2011-3607 CVE-2011-4317 CVE-2012-0021 CVE-2012-0031 CVE-2012-0053

    BIND Available for: OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: A remote attacker may be able to cause a denial of service in systems configured to run BIND as a DNS nameserver Description: A reachable assertion issue existed in the handling of DNS records. This issue was addressed by updating to BIND 9.7.6-P1. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2011-4313

    BIND Available for: OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4, OS X Mountain Lion v10.8 and v10.8.1 Impact: A remote attacker may be able to cause a denial of service, data corruption, or obtain sensitive information from process memory in systems configured to run BIND as a DNS nameserver Description: A memory management issue existed in the handling of DNS records. This issue was addressed by updating to BIND 9.7.6-P1 on OS X Lion systems, and BIND 9.8.3-P1 on OS X Mountain Lion systems. CVE-ID CVE-2012-1667

    CoreText Available for: OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Applications that use CoreText may be vulnerable to an unexpected application termination or arbitrary code execution Description: A bounds checking issue existed in the handling of text glyphs, which may lead to out of bounds memory reads or writes. This issue was addressed through improved bounds checking. This issue does not affect Mac OS X v10.6 or OS X Mountain Lion systems. CVE-ID CVE-2012-3716 : Jesse Ruderman of Mozilla Corporation

    Data Security Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4, OS X Mountain Lion v10.8 and v10.8.1 Impact: An attacker with a privileged network position may intercept user credentials or other sensitive information Description: TrustWave, a trusted root CA, has issued, and subsequently revoked, a sub-CA certificate from one of its trusted anchors. This sub-CA facilitated the interception of communications secured by Transport Layer Security (TLS). This update adds the involved sub-CA certificate to OS X's list of untrusted certificates.

    DirectoryService Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8 Impact: If the DirectoryService Proxy is used, a remote attacker may cause a denial of service or arbitrary code execution Description: A buffer overflow existed in the DirectoryService Proxy. This issue was addressed through improved bounds checking. This issue does not affect OS X Lion and Mountain Lion systems. CVE-ID CVE-2012-0650 : aazubel working with HP's Zero Day Initiative

    ImageIO Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing a maliciously crafted PNG image may lead to an unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues existed in libpng's handling of PNG images. These issues were addressed through improved validation of PNG images. These issues do not affect OS X Mountain Lion systems. CVE-ID CVE-2011-3026 : Juri Aedla CVE-2011-3048

    ImageIO Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution Description: An integer overflow issue existed in libTIFF's handling of TIFF images. This issue was addressed through improved validation of TIFF images. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-1173 : Alexander Gavrun working with HP's Zero Day Initiative

    Installer Available for: OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Remote admins and persons with physical access to the system may obtain account information Description: The fix for CVE-2012-0652 in OS X Lion 10.7.4 prevented user passwords from being recorded in the system log, but did not remove the old log entries. This issue was addressed by deleting log files that contained passwords. This issue does not affect Mac OS X 10.6 or OS X Mountain Lion systems. CVE-ID CVE-2012-0652

    International Components for Unicode Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Applications that use ICU may be vulnerable to an unexpected application termination or arbitrary code execution Description: A stack buffer overflow existed in the handling of ICU locale IDs. This issue was addressed through improved bounds checking. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2011-4599

    Kernel Available for: OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: A malicious program could bypass sandbox restrictions Description: A logic issue existed in the handling of debug system calls. This may allow a malicious program to gain code execution in other programs with the same user privileges. This issue was addressed by disabling handling of addresses in PT_STEP and PT_CONTINUE. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-0643 : iOS Jailbreak Dream Team

    LoginWindow Available for: OS X Mountain Lion v10.8 and v10.8.1 Impact: A local user may be able to obtain other user's login passwords Description: A user-installed input method could intercept password keystrokes from Login Window or Screen Saver Unlock. This issue was addressed by preventing user-installed methods from being used when the system is handling login information. CVE-ID CVE-2012-3718 : An anonymous researcher

    Mail Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing an e-mail message may lead to execution of web plugins Description: An input validation issue existed in Mail's handling of embedded web plugins. This issue was addressed by disabling third- party plug-ins in Mail. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-3719 : Will Dormann of the CERT/CC

    Mobile Accounts Available for: OS X Mountain Lion v10.8 and v10.8.1 Impact: A user with access to the contents of a mobile account may obtain the account password Description: Creating a mobile account saved a hash of the password in the account, which was used to login when the mobile account was used as an external account. The password hash could be used to determine the user's password. This issue was addressed by creating the password hash only if external accounts are enabled on the system where the mobile account is created. CVE-ID CVE-2012-3720 : Harald Wagener of Google, Inc.

    PHP Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4, OS X Mountain Lion v10.8 and v10.8.1 Impact: Multiple vulnerabilities in PHP Description: >PHP is updated to version 5.3.15 to address multiple vulnerabilities, the most serious of which may lead to arbitrary code execution. Further information is available via the PHP web site at http://www.php.net CVE-ID CVE-2012-0831 CVE-2012-1172 CVE-2012-1823 CVE-2012-2143 CVE-2012-2311 CVE-2012-2386 CVE-2012-2688

    PHP Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: PHP scripts which use libpng may be vulnerable to an unexpected application termination or arbitrary code execution Description: A memory corruption issue existed in the handling of PNG files. This issue was addressed by updating PHP's copy of libpng to version 1.5.10. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2011-3048

    Profile Manager Available for: OS X Lion Server v10.7 to v10.7.4 Impact: An unauthenticated user could enumerate managed devices Description: An authentication issue existed in the Device Management private interface. This issue was addressed by removing the interface. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-3721 : Derick Cassidy of XEquals Corporation

    QuickLook Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing a maliciously crafted .pict file may lead to an unexpected application termination or arbitrary code execution Description: A memory corruption issue existed in the handling of .pict files. This issue was addressed through improved validation of .pict files. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-0671 : Rodrigo Rubira Branco (twitter.com/bsdaemon) from the Qualys Vulnerability & Malware Research Labs (VMRL)

    QuickTime Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution Description: An integer overflow existed in QuickTime's handling of sean atoms. This issue was addressed through improved bounds checking. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-0670 : Tom Gallagher (Microsoft) and Paul Bates (Microsoft) working with HP's Zero Day Initiative

    QuickTime Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution Description: An uninitialized memory access existed in the handling of Sorenson encoded movie files. This issue was addressed through improved memory initialization. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-3722 : Will Dormann of the CERT/CC

    QuickTime Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution Description: A buffer overflow existed in the handling of RLE encoded movie files. This issue was addressed through improved bounds checking. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-0668 : Luigi Auriemma working with HP's Zero Day Initiative

    Ruby Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: An attacker may be able to decrypt data protected by SSL Description: There are known attacks on the confidentiality of SSL 3.0 and TLS 1.0 when a cipher suite uses a block cipher in CBC mode. The Ruby OpenSSL module disabled the 'empty fragment' countermeasure which prevented these attacks. This issue was addressed by enabling empty fragments. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2011-3389

    USB Available for: OS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4 Impact: Attaching a USB device may lead to an unexpected system termination or arbitrary code execution Description: A memory corruption issue existed in the handling of USB hub descriptors. This issue was addressed through improved handling of the bNbrPorts descriptor field. This issue does not affect OS X Mountain Lion systems. CVE-ID CVE-2012-3723 : Andy Davis of NGS Secure

    Note: OS X Mountain Lion v10.8.2 includes the content of Safari 6.0.1. For further details see "About the security content of Safari 6.0.1" at http://http//support.apple.com/kb/HT5502

    OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004 may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/

    The Software Update utility will present the update that applies to your system configuration. Only one is needed, either OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 or Security Update 2012-004.

    For OS X Mountain Lion v10.8.1 The download file is named: OSXUpd10.8.2.dmg Its SHA-1 digest is: d6779e1cc748b78af0207499383b1859ffbebe33

    For OS X Mountain Lion v10.8 The download file is named: OSXUpdCombo10.8.2.dmg Its SHA-1 digest is: b08f10233d362e39f20b69f91d1d73f5e7b68a2c

    For OS X Lion v10.7.4 The download file is named: MacOSXUpd10.7.5.dmg Its SHA-1 digest is: e0a9582cce9896938a7a541bd431862d93893532

    For OS X Lion v10.7 and v10.7.3 The download file is named: MacOSXUpdCombo10.7.5.dmg Its SHA-1 digest is: f7a26b164fa10dae4fe646e57b01c34a619c8d9b

    For OS X Lion Server v10.7.4 The download file is named: MacOSXServerUpd10.7.5.dmg Its SHA-1 digest is: a891b03bfb4eecb745c0c39a32f39960fdb6796a

    For OS X Lion Server v10.7 and v10.7.3 The download file is named: MacOSXServerUpdCombo10.7.5.dmg Its SHA-1 digest is: df6e1748ab0a3c9e05c890be49d514673efd965e

    For Mac OS X v10.6.8 The download file is named: SecUpd2012-004.dmg Its SHA-1 digest is: 5b136e29a871d41012f0c6ea1362d6210c8b4fb7

    For Mac OS X Server v10.6.8 The download file is named: SecUpdSrvr2012-004.dmg Its SHA-1 digest is: 9b24496be15078e58a88537700f2f39c112e3b28

    Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/

    -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org

    iQIcBAEBAgAGBQJQWhlbAAoJEPefwLHPlZEwwjwQAKrpQlZh1B2mkSTLxR7QZg6e Qm7SmIZL9sjl5gQkTxoAvOGxJ8uRdYPlJ1IpyU/MbK0GqO53KmFSeKkwCnvLKMaW pc6tiFaQ4zV4LEAwBAFEuqCsMyPEJqKDhYXl2cHQmWfAlrLCyCKfzGLy2mY2UnkE DQC2+ys70DChFv2GzyXlibBXAGMKDygJ5dVKynsi1ceZLYWbUJoGwlUtXPylBpnO QyGWXmEloPbhK6HJbKMNacuDdVcb26pvIeFiivkTSxPVlZ3ns2tAwEyvHrzA9O4n 7rQ6jvfDbguOZmM5sPFvVKBw2GVDBNU+G3T8ouIXhk6Pjhr4in8VFCb8MIMLb8hm 7YYn2z1TzKTNmUuYbwe6ukQvf57cPuW0bAvslbl6PgrzqorlNPU4rDoSvPrJx/RO BOYkcxfirevHDGibfkeqXPjL3h+bVrb1USZpAv+ZOAy0M89SHFcvMtpAhxnoGiV5 w4EyKB+9Yi/CSAk2Ne3Y5kHH7/v3pWV68aJwhVirya7ex3vnJ+M+lRLKSm2BUjL3 +9fykrJBDujFDXoCmK5CN5Wx36DSVZ4VO1h635crotudtcvd+LQ2VHma/Chav5wK q5SSllf4KEownpx6o/qTxpg5tcC4lvgTcsDHlYcNq2s8KTTjmOden8ar4h7M7QD2 xyBfrQfG/dsif6jGHaot =8joH -----END PGP SIGNATURE----- . Content-Disposition: inline

    ==========================================================================Ubuntu Security Notice USN-1437-1 May 04, 2012

    php5 vulnerability

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 12.04 LTS
    • Ubuntu 11.10
    • Ubuntu 11.04
    • Ubuntu 10.04 LTS
    • Ubuntu 8.04 LTS

    Summary:

    Standalone PHP CGI scripts could be made to execute arbitrary code with the privilege of the web server.

    Software Description: - php5: HTML-embedded scripting language interpreter

    Details:

    It was discovered that PHP, when used as a stand alone CGI processor for the Apache Web Server, did not properly parse and filter query strings. Configurations using mod_php5 and FastCGI were not vulnerable.

    This update addresses the issue when the PHP CGI interpreter is configured using mod_cgi and mod_actions as described in /usr/share/doc/php5-cgi/README.Debian.gz; however, if an alternate configuration is used to enable PHP CGI processing, it should be reviewed to ensure that command line arguments cannot be passed to the PHP interpreter. Please see http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-2311.html for more details and potential mitigation approaches.

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 12.04 LTS: php5-cgi 5.3.10-1ubuntu3.1

    Ubuntu 11.10: php5-cgi 5.3.6-13ubuntu3.7

    Ubuntu 11.04: php5-cgi 5.3.5-1ubuntu7.8

    Ubuntu 10.04 LTS: php5-cgi 5.3.2-1ubuntu4.15

    Ubuntu 8.04 LTS: php5-cgi 5.2.4-2ubuntu5.24

    In general, a standard system update will make all the necessary changes

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.4.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.14"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.13"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.17"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.13"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "2.0b10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.16"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.18"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.3.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.16"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.4.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.3.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.15"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.17"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.3.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.14"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.15"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "the php group",
            "version": null
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.5.4"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp3 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.1.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux long life server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "appliance server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "voice portal sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2011"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "11.4"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.1"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ctpview 7.0r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "lotus foundations start 1.2.2b",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "enterprise linux eus 5.6.z server",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "php",
            "version": "5.4.2"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "lotus foundations start 1.2.2a",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.1"
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "enterprise linux server optional eus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "110"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2011"
          },
          {
            "_id": null,
            "model": "linux lts lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "php",
            "version": "5.3.12"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "linux enterprise server for vmware sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.2"
          },
          {
            "_id": null,
            "model": "linux enterprise server for vmware sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "appliance server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "3.0x64"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop workstation client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "2008"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "lotus foundations start",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "enterprise server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "11x64"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server optional eus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "php",
            "version": "5.3.13"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#520827"
          },
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2311"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "HP",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "122468"
          },
          {
            "db": "PACKETSTORM",
            "id": "113905"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          }
        ],
        "trust": 0.4
      },
      "cve": "CVE-2012-2311",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2012-2311",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2012-2311",
                "trust": 1.0,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2012-2311"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that contain a %3D sequence but no = (equals sign) character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the \u0027d\u0027 case.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1823. PHP-CGI-based setups contain a vulnerability when parsing query string parameters from php files. PHP is prone to an information-disclosure vulnerability. \nExploiting this issue allows remote attackers to view the source code of files in the context of the server process. This may allow the attacker to obtain sensitive information and to run arbitrary PHP code on the affected computer; other attacks are also possible. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201209-03\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n    Title: PHP: Multiple vulnerabilities\n     Date: September 24, 2012\n     Bugs: #384301, #396311, #396533, #399247, #399567, #399573,\n           #401997, #410957, #414553, #421489, #427354, #429630\n       ID: 201209-03\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities were found in PHP, the worst of which lead to\nremote execution of arbitrary code. \n\nBackground\n==========\n\nPHP is a widely-used general-purpose scripting language that is\nespecially suited for Web development and can be embedded into HTML. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package              /     Vulnerable     /            Unaffected\n    -------------------------------------------------------------------\n  1  dev-lang/php                 \u003c 5.3.15                  \u003e= 5.3.15\n                                  \u003c 5.4.5                    \u003e= 5.4.5\n    -------------------------------------------------------------------\n     # Package 1 only applies to users of these architectures:\n       arm\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in PHP. Please review the\nCVE identifiers referenced below for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll PHP users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=dev-lang/php-5.3.15\"\n\nAll PHP users on ARM should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=dev-lang/php-5.4.5\"\n\nReferences\n==========\n\n[  1 ] CVE-2011-1398\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1398\n[  2 ] CVE-2011-3379\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3379\n[  3 ] CVE-2011-4566\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4566\n[  4 ] CVE-2011-4885\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4885\n[  5 ] CVE-2012-0057\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0057\n[  6 ] CVE-2012-0788\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0788\n[  7 ] CVE-2012-0789\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0789\n[  8 ] CVE-2012-0830\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0830\n[  9 ] CVE-2012-0831\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0831\n[ 10 ] CVE-2012-1172\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1172\n[ 11 ] CVE-2012-1823\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1823\n[ 12 ] CVE-2012-2143\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2143\n[ 13 ] CVE-2012-2311\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2311\n[ 14 ] CVE-2012-2335\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2335\n[ 15 ] CVE-2012-2336\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2336\n[ 16 ] CVE-2012-2386\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2386\n[ 17 ] CVE-2012-2688\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2688\n[ 18 ] CVE-2012-3365\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3365\n[ 19 ] CVE-2012-3450\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3450\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201209-03.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2012 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. \nHP System Management Homepage (SMH) v7.2.0 and earlier running on Linux and\nWindows. ----------------------------------------------------------------------\n\nBecome a PSI 3.0 beta tester!\nTest-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface. \nDownload it here!\nhttp://secunia.com/psi_30_beta_launch\n\n----------------------------------------------------------------------\n\nTITLE:\nUbuntu update for php\n\nSECUNIA ADVISORY ID:\nSA49097\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/49097/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=49097\n\nRELEASE DATE:\n2012-05-07\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/49097/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/49097/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=49097\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nUbuntu has issued an update for php. This fixes a vulnerability,\nwhich can be exploited by malicious people to disclose certain\nsensitive information or compromise a vulnerable system. \n\nFor more information:\nSA49014\n\nSOLUTION:\nApply updated packages. \n\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nORIGINAL ADVISORY:\nUSN-1437-1:\nhttp://www.ubuntu.com/usn/usn-1437-1/\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n\nAdditionally, this update fixes insufficient validation of upload\nname which lead to corrupted $_FILES indices. \n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 5.3.3-7+squeeze9. \n\nThe testing distribution (wheezy) will be fixed soon. \n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 5.4.3-1. \n\nWe recommend that you upgrade your php5 packages. \n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.12 (GNU/Linux)\n\niQEcBAEBAgAGBQJPqqf3AAoJEOxfUAG2iX57MqcIALyiggqZ6SR+lOtdAd7npKd3\nlZ3nXZVUvyC5e4/gageT3s2BlmuipGIrBvyraWR2TvAlNYIu7Ia6EMVsjG0T3gHu\niM2yB4+wCaV8CIHqzmyN9lDaotxVty9gQ8BdtJaZguwi9+Sw7KfaCw6CXTluqPkU\nOcdb7Saz7eVnNnVwTORxOCBnlIZDn4PbiW9tMLZawGTwNgdT/2lMS8czJGVmf/Oj\nj4c631zN1K8vlnctHCYQAS269nr9jwmEx0JKcWl5khc7XMi/SmcUG9xG4p5JpGrA\nZbBAySyLuxr9bdMA3I9Jqxmmq4uaGwpCH8DSfMJd5FHNXKfq7efnL1Hp5mOERHU=\n=snJW\n-----END PGP SIGNATURE-----\n\n_______________________________________________\nFull-Disclosure - We believe in it. \nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\nHosted and sponsored by Secunia - http://secunia.com/\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03368475\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03368475\nVersion: 1\n\nHPSBUX02791 SSRT100856 rev.1 - HP-UX Apache Web Server running PHP, Remote\nExecution of Arbitrary Code, Privilege Elevation, Denial of Service (DoS)\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2012-06-14\nLast Updated: 2012-06-14\n\nPotential Security Impact: Remote execution of arbitrary code, privilege\nelevation, or Denial of Service (DoS). \n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP-UX Apache Web\nServer running PHP. These vulnerabilities could be exploited remotely to\nexecute arbitrary code, elevate privileges, or create a Denial of Service\n(DoS). \n\nReferences: CVE-2011-4153, CVE-2012-0830, CVE-2012-0883, CVE-2012-1172,\nCVE-2012-1823, CVE-2012-2311\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.23, B.11.31 running HP-UX Apache Web Server Suite v3.24 or earlier\n\nBACKGROUND\nFor a PGP signed\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2011-4153    (AV:N/AC:L/Au:N/C:N/I:N/A:P)       5.0\nCVE-2012-0830    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\nCVE-2012-0883    (AV:L/AC:M/Au:N/C:C/I:C/A:C)       6.9\nCVE-2012-1172    (AV:N/AC:M/Au:N/C:N/I:P/A:P)       5.8\nCVE-2012-1823    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\nCVE-2012-2311    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following software updates to resolve the\nvulnerabilities. \nThe updates are available for download from http://software.hp.com\n\nHP-UX Web Server Suite v.3.24 containing Apache v2.2.15.13 and PHP v5.2.17\nHP-UX 11i Release\n Apache Depot name\n\nB.11.23 (32-bit)\n HPUXWS22ATW-B324-32\n\nB.11.23 (64-bit)\n HPUXWS22ATW-B324-64\n\nB.11.31 (32-bit)\n HPUXWS22ATW-B324-32\n\nB.11.31 (64-bit)\n HPUXWS22ATW-B324-64\n\nMANUAL ACTIONS: Yes - Update\nInstall HP-UX Web Server Suite v3.24 or subsequent. \n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \nHP-UX Web Server Suite v3.24\nAFFECTED VERSIONS\n\nHP-UX B.11.23\n==============\nhpuxws22APCH32.APACHE\nhpuxws22APCH32.APACHE2\nhpuxws22APCH32.AUTH_LDAP\nhpuxws22APCH32.AUTH_LDAP2\nhpuxws22APCH32.MOD_JK\nhpuxws22APCH32.MOD_JK2\nhpuxws22APCH32.MOD_PERL\nhpuxws22APCH32.MOD_PERL2\nhpuxws22APCH32.PHP\nhpuxws22APCH32.PHP2\nhpuxws22APCH32.WEBPROXY\nhpuxws22APCH32.WEBPROXY2\nhpuxws22APACHE.APACHE\nhpuxws22APACHE.APACHE2\nhpuxws22APACHE.AUTH_LDAP\nhpuxws22APACHE.AUTH_LDAP2\nhpuxws22APACHE.MOD_JK\nhpuxws22APACHE.MOD_JK2\nhpuxws22APACHE.MOD_PERL\nhpuxws22APACHE.MOD_PERL2\nhpuxws22APACHE.PHP\nhpuxws22APACHE.PHP2\nhpuxws22APACHE.WEBPROXY\nhpuxws22APACHE.WEBPROXY2\naction: install revision B.2.2.15.13 or subsequent\n\nHP-UX B.11.31\n==================\nhpuxws22APCH32.APACHE\nhpuxws22APCH32.APACHE2\nhpuxws22APCH32.AUTH_LDAP\nhpuxws22APCH32.AUTH_LDAP2\nhpuxws22APCH32.MOD_JK\nhpuxws22APCH32.MOD_JK2\nhpuxws22APCH32.MOD_PERL\nhpuxws22APCH32.MOD_PERL2\nhpuxws22APCH32.PHP\nhpuxws22APCH32.PHP2\nhpuxws22APCH32.WEBPROXY\nhpuxws22APCH32.WEBPROXY2\nhpuxws22APACHE.APACHE\nhpuxws22APACHE.APACHE2\nhpuxws22APACHE.AUTH_LDAP\nhpuxws22APACHE.AUTH_LDAP2\nhpuxws22APACHE.MOD_JK\nhpuxws22APACHE.MOD_JK2\nhpuxws22APACHE.MOD_PERL\nhpuxws22APACHE.MOD_PERL2\nhpuxws22APACHE.PHP\nhpuxws22APACHE.PHP2\nhpuxws22APACHE.WEBPROXY\nhpuxws22APACHE.WEBPROXY2\n\naction: install revision B.2.2.15.13 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 14 June 2012 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin List: A list of HP Security Bulletins, updated\nperiodically, is contained in HP Security Notice HPSN-2011-001:\nhttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c02964430\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttp://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2012 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.10 (GNU/Linux)\n\niEYEARECAAYFAk/f0GcACgkQ4B86/C0qfVnCEwCfWX2UX+TvBNeJawjexLmPtwjt\n1TEAnj7Q3fqZkor5ilSKlW2dNHa1f4aO\n=pEB+\n-----END PGP SIGNATURE-----\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nAPPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and\nSecurity Update 2012-004\n\nOS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update\n2012-004 are now available and address the following:\n\nApache\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Multiple vulnerabilities in Apache\nDescription:  Apache is updated to version 2.2.22 to address several\nvulnerabilities, the most serious of which may lead to a denial of\nservice. Further information is available via the Apache web site at\nhttp://httpd.apache.org/. This issue does not affect OS X Mountain\nLion systems. \nCVE-ID\nCVE-2011-3368\nCVE-2011-3607\nCVE-2011-4317\nCVE-2012-0021\nCVE-2012-0031\nCVE-2012-0053\n\nBIND\nAvailable for:  OS X Lion v10.7 to v10.7.4,\nOS X Lion Server v10.7 to v10.7.4\nImpact:  A remote attacker may be able to cause a denial of service\nin systems configured to run BIND as a DNS nameserver\nDescription:  A reachable assertion issue existed in the handling of\nDNS records. This issue was addressed by updating to BIND 9.7.6-P1. \nThis issue does not affect OS X Mountain Lion systems. \nCVE-ID\nCVE-2011-4313\n\nBIND\nAvailable for:  OS X Lion v10.7 to v10.7.4,\nOS X Lion Server v10.7 to v10.7.4,\nOS X Mountain Lion v10.8 and v10.8.1\nImpact:  A remote attacker may be able to cause a denial of service,\ndata corruption, or obtain sensitive information from process memory\nin systems configured to run BIND as a DNS nameserver\nDescription:  A memory management issue existed in the handling of\nDNS records. This issue was addressed by updating to BIND 9.7.6-P1 on\nOS X Lion systems, and BIND 9.8.3-P1 on OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-1667\n\nCoreText\nAvailable for:  OS X Lion v10.7 to v10.7.4,\nOS X Lion Server v10.7 to v10.7.4\nImpact:  Applications that use CoreText may be vulnerable to an\nunexpected application termination or arbitrary code execution\nDescription:  A bounds checking issue existed in the handling of text\nglyphs, which may lead to out of bounds memory reads or writes. This\nissue was addressed through improved bounds checking. This issue does\nnot affect Mac OS X v10.6 or OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-3716 : Jesse Ruderman of Mozilla Corporation\n\nData Security\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4,\nOS X Mountain Lion v10.8 and v10.8.1\nImpact:  An attacker with a privileged network position may intercept\nuser credentials or other sensitive information\nDescription:  TrustWave, a trusted root CA, has issued, and\nsubsequently revoked, a sub-CA certificate from one of its trusted\nanchors. This sub-CA facilitated the interception of communications\nsecured by Transport Layer Security (TLS). This update adds the\ninvolved sub-CA certificate to OS X\u0027s list of untrusted certificates. \n\nDirectoryService\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8\nImpact:  If the DirectoryService Proxy is used, a remote attacker may\ncause a denial of service or arbitrary code execution\nDescription:  A buffer overflow existed in the DirectoryService\nProxy. This issue was addressed through improved bounds checking. \nThis issue does not affect OS X Lion and Mountain Lion systems. \nCVE-ID\nCVE-2012-0650 : aazubel working with HP\u0027s Zero Day Initiative\n\nImageIO\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing a maliciously crafted PNG image may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  Multiple memory corruption issues existed in libpng\u0027s\nhandling of PNG images. These issues were addressed through improved\nvalidation of PNG images. These issues do not affect OS X Mountain\nLion systems. \nCVE-ID\nCVE-2011-3026 : Juri Aedla\nCVE-2011-3048\n\nImageIO\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing a maliciously crafted TIFF image may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  An integer overflow issue existed in libTIFF\u0027s handling\nof TIFF images. This issue was addressed through improved validation\nof TIFF images. This issue does not affect OS X Mountain Lion\nsystems. \nCVE-ID\nCVE-2012-1173 : Alexander Gavrun working with HP\u0027s Zero Day\nInitiative\n\nInstaller\nAvailable for:  OS X Lion v10.7 to v10.7.4,\nOS X Lion Server v10.7 to v10.7.4\nImpact:  Remote admins and persons with physical access to the system\nmay obtain account information\nDescription:  The fix for CVE-2012-0652 in OS X Lion 10.7.4 prevented\nuser passwords from being recorded in the system log, but did not\nremove the old log entries. This issue was addressed by deleting log\nfiles that contained passwords. This issue does not affect Mac OS X\n10.6 or OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-0652\n\nInternational Components for Unicode\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Applications that use ICU may be vulnerable to an unexpected\napplication termination or arbitrary code execution\nDescription:  A stack buffer overflow existed in the handling of ICU\nlocale IDs. This issue was addressed through improved bounds\nchecking. This issue does not affect OS X Mountain Lion systems. \nCVE-ID\nCVE-2011-4599\n\nKernel\nAvailable for:  OS X Lion v10.7 to v10.7.4,\nOS X Lion Server v10.7 to v10.7.4\nImpact:  A malicious program could bypass sandbox restrictions\nDescription:  A logic issue existed in the handling of debug system\ncalls. This may allow a malicious program to gain code execution in\nother programs with the same user privileges. This issue was\naddressed by disabling handling of addresses in PT_STEP and\nPT_CONTINUE. This issue does not affect OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-0643 : iOS Jailbreak Dream Team\n\nLoginWindow\nAvailable for:  OS X Mountain Lion v10.8 and v10.8.1\nImpact:  A local user may be able to obtain other user\u0027s login\npasswords\nDescription:  A user-installed input method could intercept password\nkeystrokes from Login Window or Screen Saver Unlock. This issue was\naddressed by preventing user-installed methods from being used when\nthe system is handling login information. \nCVE-ID\nCVE-2012-3718 : An anonymous researcher\n\nMail\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing an e-mail message may lead to execution of web\nplugins\nDescription:  An input validation issue existed in Mail\u0027s handling of\nembedded web plugins. This issue was addressed by disabling third-\nparty plug-ins in Mail. This issue does not affect OS X Mountain Lion\nsystems. \nCVE-ID\nCVE-2012-3719 : Will Dormann of the CERT/CC\n\nMobile Accounts\nAvailable for:  OS X Mountain Lion v10.8 and v10.8.1\nImpact:  A user with access to the contents of a mobile account may\nobtain the account password\nDescription:  Creating a mobile account saved a hash of the password\nin the account, which was used to login when the mobile account was\nused as an external account. The password hash could be used to\ndetermine the user\u0027s password. This issue was addressed by creating\nthe password hash only if external accounts are enabled on the system\nwhere the mobile account is created. \nCVE-ID\nCVE-2012-3720 : Harald Wagener of Google, Inc. \n\nPHP\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4,\nOS X Mountain Lion v10.8 and v10.8.1\nImpact:  Multiple vulnerabilities in PHP\nDescription:  \u003ePHP is updated to version 5.3.15 to address multiple\nvulnerabilities, the most serious of which may lead to arbitrary code\nexecution. Further information is available via the PHP web site at\nhttp://www.php.net\nCVE-ID\nCVE-2012-0831\nCVE-2012-1172\nCVE-2012-1823\nCVE-2012-2143\nCVE-2012-2311\nCVE-2012-2386\nCVE-2012-2688\n\nPHP\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  PHP scripts which use libpng may be vulnerable to an\nunexpected application termination or arbitrary code execution\nDescription:  A memory corruption issue existed in the handling of\nPNG files. This issue was addressed by updating PHP\u0027s copy of libpng\nto version 1.5.10. This issue does not affect OS X Mountain Lion\nsystems. \nCVE-ID\nCVE-2011-3048\n\nProfile Manager\nAvailable for:  OS X Lion Server v10.7 to v10.7.4\nImpact:  An unauthenticated user could enumerate managed devices\nDescription:  An authentication issue existed in the Device\nManagement private interface. This issue was addressed by removing\nthe interface. This issue does not affect OS X Mountain Lion\nsystems. \nCVE-ID\nCVE-2012-3721 : Derick Cassidy of XEquals Corporation\n\nQuickLook\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing a maliciously crafted .pict file may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  A memory corruption issue existed in the handling of\n.pict files. This issue was addressed through improved validation of\n.pict files. This issue does not affect OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-0671 : Rodrigo Rubira Branco (twitter.com/bsdaemon) from the\nQualys Vulnerability \u0026 Malware Research Labs (VMRL)\n\nQuickTime\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing a maliciously crafted movie file may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  An integer overflow existed in QuickTime\u0027s handling of\nsean atoms. This issue was addressed through improved bounds\nchecking. This issue does not affect OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-0670 : Tom Gallagher (Microsoft) and Paul Bates (Microsoft)\nworking with HP\u0027s Zero Day Initiative\n\nQuickTime\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing a maliciously crafted movie file may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  An uninitialized memory access existed in the handling\nof Sorenson encoded movie files. This issue was addressed through\nimproved memory initialization. This issue does not affect OS X\nMountain Lion systems. \nCVE-ID\nCVE-2012-3722 : Will Dormann of the CERT/CC\n\nQuickTime\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  Viewing a maliciously crafted movie file may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  A buffer overflow existed in the handling of RLE\nencoded movie files. This issue was addressed through improved bounds\nchecking. This issue does not affect OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-0668 : Luigi Auriemma working with HP\u0027s Zero Day Initiative\n\nRuby\nAvailable for:  Mac OS X 10.6.8, Mac OS X Server 10.6.8,\nOS X Lion v10.7 to v10.7.4, OS X Lion Server v10.7 to v10.7.4\nImpact:  An attacker may be able to decrypt data protected by SSL\nDescription:  There are known attacks on the confidentiality of SSL\n3.0 and TLS 1.0 when a cipher suite uses a block cipher in CBC mode. \nThe Ruby OpenSSL module disabled the \u0027empty fragment\u0027 countermeasure\nwhich prevented these attacks. This issue was addressed by enabling\nempty fragments. This issue does not affect OS X Mountain Lion\nsystems. \nCVE-ID\nCVE-2011-3389\n\nUSB\nAvailable for:  OS X Lion v10.7 to v10.7.4,\nOS X Lion Server v10.7 to v10.7.4\nImpact:  Attaching a USB device may lead to an unexpected system\ntermination or arbitrary code execution\nDescription:  A memory corruption issue existed in the handling of\nUSB hub descriptors. This issue was addressed through improved\nhandling of the bNbrPorts descriptor field. This issue does not\naffect OS X Mountain Lion systems. \nCVE-ID\nCVE-2012-3723 : Andy Davis of NGS Secure\n\nNote: OS X Mountain Lion v10.8.2 includes the content of\nSafari 6.0.1. For further details see \"About the security content\nof Safari 6.0.1\" at http://http//support.apple.com/kb/HT5502\n\n\nOS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update\n2012-004 may be obtained from the Software Update pane in System\nPreferences, or Apple\u0027s Software Downloads web site:\nhttp://www.apple.com/support/downloads/\n\nThe Software Update utility will present the update that applies\nto your system configuration. Only one is needed, either\nOS X Mountain Lion v10.8.2, OS X Lion v10.7.5 or Security Update\n2012-004. \n\nFor OS X Mountain Lion v10.8.1\nThe download file is named: OSXUpd10.8.2.dmg\nIts SHA-1 digest is: d6779e1cc748b78af0207499383b1859ffbebe33\n\nFor OS X Mountain Lion v10.8\nThe download file is named: OSXUpdCombo10.8.2.dmg\nIts SHA-1 digest is: b08f10233d362e39f20b69f91d1d73f5e7b68a2c\n\nFor OS X Lion v10.7.4\nThe download file is named: MacOSXUpd10.7.5.dmg\nIts SHA-1 digest is: e0a9582cce9896938a7a541bd431862d93893532\n\nFor OS X Lion v10.7 and v10.7.3\nThe download file is named: MacOSXUpdCombo10.7.5.dmg\nIts SHA-1 digest is: f7a26b164fa10dae4fe646e57b01c34a619c8d9b\n\nFor OS X Lion Server v10.7.4\nThe download file is named: MacOSXServerUpd10.7.5.dmg\nIts SHA-1 digest is: a891b03bfb4eecb745c0c39a32f39960fdb6796a\n\nFor OS X Lion Server v10.7 and v10.7.3\nThe download file is named: MacOSXServerUpdCombo10.7.5.dmg\nIts SHA-1 digest is: df6e1748ab0a3c9e05c890be49d514673efd965e\n\nFor Mac OS X v10.6.8\nThe download file is named: SecUpd2012-004.dmg\nIts SHA-1 digest is: 5b136e29a871d41012f0c6ea1362d6210c8b4fb7\n\nFor Mac OS X Server v10.6.8\nThe download file is named: SecUpdSrvr2012-004.dmg\nIts SHA-1 digest is: 9b24496be15078e58a88537700f2f39c112e3b28\n\nInformation will also be posted to the Apple Security Updates\nweb site: http://support.apple.com/kb/HT1222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG/MacGPG2 v2.0.17 (Darwin)\nComment: GPGTools - http://gpgtools.org\n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\nxyBfrQfG/dsif6jGHaot\n=8joH\n-----END PGP SIGNATURE-----\n. Content-Disposition: inline\n\n==========================================================================Ubuntu Security Notice USN-1437-1\nMay 04, 2012\n\nphp5 vulnerability\n==========================================================================\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 12.04 LTS\n- Ubuntu 11.10\n- Ubuntu 11.04\n- Ubuntu 10.04 LTS\n- Ubuntu 8.04 LTS\n\nSummary:\n\nStandalone PHP CGI scripts could be made to execute arbitrary code with\nthe privilege of the web server. \n\nSoftware Description:\n- php5: HTML-embedded scripting language interpreter\n\nDetails:\n\nIt was discovered that PHP, when used as a stand alone CGI processor\nfor the Apache Web Server, did not properly parse and filter query\nstrings. Configurations using\nmod_php5 and FastCGI were not vulnerable. \n\nThis update addresses the issue when the PHP CGI interpreter\nis configured using mod_cgi and mod_actions as described\nin /usr/share/doc/php5-cgi/README.Debian.gz; however,\nif an alternate configuration is used to enable PHP CGI\nprocessing, it should be reviewed to ensure that command line\narguments cannot be passed to the PHP interpreter. Please see\nhttp://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-2311.html\nfor more details and potential mitigation approaches. \n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 12.04 LTS:\n  php5-cgi                        5.3.10-1ubuntu3.1\n\nUbuntu 11.10:\n  php5-cgi                        5.3.6-13ubuntu3.7\n\nUbuntu 11.04:\n  php5-cgi                        5.3.5-1ubuntu7.8\n\nUbuntu 10.04 LTS:\n  php5-cgi                        5.3.2-1ubuntu4.15\n\nUbuntu 8.04 LTS:\n  php5-cgi                        5.2.4-2ubuntu5.24\n\nIn general, a standard system update will make all the necessary changes",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2012-2311"
          },
          {
            "db": "CERT/CC",
            "id": "VU#520827"
          },
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "116800"
          },
          {
            "db": "PACKETSTORM",
            "id": "122468"
          },
          {
            "db": "PACKETSTORM",
            "id": "112515"
          },
          {
            "db": "PACKETSTORM",
            "id": "112580"
          },
          {
            "db": "PACKETSTORM",
            "id": "113905"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          },
          {
            "db": "PACKETSTORM",
            "id": "116792"
          },
          {
            "db": "PACKETSTORM",
            "id": "112474"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2012-2311",
            "trust": 2.9
          },
          {
            "db": "CERT/CC",
            "id": "VU#520827",
            "trust": 2.1
          },
          {
            "db": "SECUNIA",
            "id": "49014",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "49085",
            "trust": 1.0
          },
          {
            "db": "SECTRACK",
            "id": "1027022",
            "trust": 1.0
          },
          {
            "db": "JUNIPER",
            "id": "JSA10658",
            "trust": 0.3
          },
          {
            "db": "CERT/CC",
            "id": "VU#673343",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "53388",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "123310",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "116800",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "122468",
            "trust": 0.1
          },
          {
            "db": "SECUNIA",
            "id": "49097",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "112515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "112580",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "113905",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "122482",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "116792",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "112474",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#520827"
          },
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "116800"
          },
          {
            "db": "PACKETSTORM",
            "id": "122468"
          },
          {
            "db": "PACKETSTORM",
            "id": "112515"
          },
          {
            "db": "PACKETSTORM",
            "id": "112580"
          },
          {
            "db": "PACKETSTORM",
            "id": "113905"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          },
          {
            "db": "PACKETSTORM",
            "id": "116792"
          },
          {
            "db": "PACKETSTORM",
            "id": "112474"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2311"
          }
        ]
      },
      "id": "VAR-201205-0246",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.47077376
      },
      "last_update_date": "2026-04-10T23:37:20.576000Z",
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-89",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2012-2311"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.1,
            "url": "http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/"
          },
          {
            "trust": 1.8,
            "url": "http://www.php.net/archive/2012.php#id2012-05-08-1"
          },
          {
            "trust": 1.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03839862"
          },
          {
            "trust": 1.3,
            "url": "http://www.kb.cert.org/vuls/id/520827"
          },
          {
            "trust": 1.1,
            "url": "http://www.php.net/"
          },
          {
            "trust": 1.1,
            "url": "http://www.php.net/archive/2012.php#id2012-05-03-1"
          },
          {
            "trust": 1.0,
            "url": "http://lists.apple.com/archives/security-announce/2012/sep/msg00004.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.securitytracker.com/id?1027022"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/49085"
          },
          {
            "trust": 1.0,
            "url": "http://www.debian.org/security/2012/dsa-2465"
          },
          {
            "trust": 1.0,
            "url": "http://support.apple.com/kb/ht5501"
          },
          {
            "trust": 1.0,
            "url": "https://bugs.php.net/patch-display.php?bug_id=61910\u0026patch=cgi.diff-fix-check.patch\u0026revision=1336093719\u0026display=1"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00002.html"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/49014"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00011.html"
          },
          {
            "trust": 1.0,
            "url": "https://bugs.php.net/bug.php?id=61910"
          },
          {
            "trust": 1.0,
            "url": "http://www.php.net/changelog-5.php#5.4.3"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00007.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.php.net/manual/en/security.cgi-bin.php"
          },
          {
            "trust": 0.8,
            "url": "http://www.symantec.com/connect/blogs/linux-worm-targeting-hidden-devices"
          },
          {
            "trust": 0.8,
            "url": "http://php.net/changelog-5.php"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2311"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1823"
          },
          {
            "trust": 0.4,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2335"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3389"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2336"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0883"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1172"
          },
          {
            "trust": 0.3,
            "url": "http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.hmj%2asm..t.a4jy.6o9k.bw89mq%5f%5fdmtsfto0"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/software/lotus/products/foundations/start/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.parallels.com/en/113818"
          },
          {
            "trust": 0.3,
            "url": "kb.parallels.com/en/116241"
          },
          {
            "trust": 0.3,
            "url": "https://community.rapid7.com/thread/5174"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/fulldisclosure/2013/jun/21"
          },
          {
            "trust": 0.3,
            "url": "http://ompldr.org/vzgxxaq"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10658\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100162699"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100165255"
          },
          {
            "trust": 0.3,
            "url": "http://www.h-online.com/security/news/item/critical-open-hole-in-php-creates-risks-update-1567532.html"
          },
          {
            "trust": 0.3,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03360041"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21620314"
          },
          {
            "trust": 0.3,
            "url": "http://www.turbolinux.co.jp/security-e/2012/tlsa-2012-14.txt"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/673343"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2358"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2357"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2362"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2361"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2364"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2363"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2359"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2329"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2356"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2110"
          },
          {
            "trust": 0.3,
            "url": "http://h18013.www1.hp.com/products/servers/management/agents/index.html"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2355"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2360"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-5217"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2688"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0831"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2143"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0830"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2386"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-4821"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/glsa/glsa-201209-03.xml"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0057"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-4566"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2688"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-1398"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0789"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-1398"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0788"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4885"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0831"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2336"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2335"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0057"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3450"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3450"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0830"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3379"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3379"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4566"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1172"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-4885"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-1823"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0788"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2311"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0789"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3365"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2143"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3365"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2386"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-5217"
          },
          {
            "trust": 0.1,
            "url": "http://www.ubuntu.com/usn/usn-1437-1/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/49097/#comments"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/psi_30_beta_launch"
          },
          {
            "trust": 0.1,
            "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=49097"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/vulnerability_intelligence/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/49097/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/vulnerability_scanning/personal/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "http://lists.grok.org.uk/full-disclosure-charter.html"
          },
          {
            "trust": 0.1,
            "url": "http://software.hp.com"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4153"
          },
          {
            "trust": 0.1,
            "url": "http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.1,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.1,
            "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.1,
            "url": "http://www.php.net"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3718"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4313"
          },
          {
            "trust": 0.1,
            "url": "http://http//support.apple.com/kb/ht5502"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3048"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0031"
          },
          {
            "trust": 0.1,
            "url": "http://support.apple.com/kb/ht1222"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0668"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3368"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4317"
          },
          {
            "trust": 0.1,
            "url": "http://www.apple.com/support/downloads/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0670"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0671"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1173"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0652"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4599"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1667"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3607"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0021"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0650"
          },
          {
            "trust": 0.1,
            "url": "http://gpgtools.org"
          },
          {
            "trust": 0.1,
            "url": "http://httpd.apache.org/."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3026"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0643"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0053"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3716"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.5-1ubuntu7.8"
          },
          {
            "trust": 0.1,
            "url": "http://people.canonical.com/~ubuntu-security/cve/2012/cve-2012-2311.html"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.10-1ubuntu3.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.2.4-2ubuntu5.24"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.2-1ubuntu4.15"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.6-13ubuntu3.7"
          },
          {
            "trust": 0.1,
            "url": "http://www.ubuntu.com/usn/usn-1437-1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#520827"
          },
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "116800"
          },
          {
            "db": "PACKETSTORM",
            "id": "122468"
          },
          {
            "db": "PACKETSTORM",
            "id": "112515"
          },
          {
            "db": "PACKETSTORM",
            "id": "112580"
          },
          {
            "db": "PACKETSTORM",
            "id": "113905"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          },
          {
            "db": "PACKETSTORM",
            "id": "116792"
          },
          {
            "db": "PACKETSTORM",
            "id": "112474"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2311"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#520827",
            "ident": null
          },
          {
            "db": "BID",
            "id": "53388",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "123310",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "116800",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "122468",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "112515",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "112580",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "113905",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "122482",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "116792",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "112474",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2311",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2012-05-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#520827",
            "ident": null
          },
          {
            "date": "2012-05-04T00:00:00",
            "db": "BID",
            "id": "53388",
            "ident": null
          },
          {
            "date": "2013-09-19T22:22:00",
            "db": "PACKETSTORM",
            "id": "123310",
            "ident": null
          },
          {
            "date": "2012-09-24T15:02:14",
            "db": "PACKETSTORM",
            "id": "116800",
            "ident": null
          },
          {
            "date": "2013-07-18T18:51:07",
            "db": "PACKETSTORM",
            "id": "122468",
            "ident": null
          },
          {
            "date": "2012-05-08T04:16:46",
            "db": "PACKETSTORM",
            "id": "112515",
            "ident": null
          },
          {
            "date": "2012-05-10T03:59:25",
            "db": "PACKETSTORM",
            "id": "112580",
            "ident": null
          },
          {
            "date": "2012-06-19T18:22:00",
            "db": "PACKETSTORM",
            "id": "113905",
            "ident": null
          },
          {
            "date": "2013-07-19T19:33:00",
            "db": "PACKETSTORM",
            "id": "122482",
            "ident": null
          },
          {
            "date": "2012-09-22T06:30:43",
            "db": "PACKETSTORM",
            "id": "116792",
            "ident": null
          },
          {
            "date": "2012-05-06T01:28:45",
            "db": "PACKETSTORM",
            "id": "112474",
            "ident": null
          },
          {
            "date": "2012-05-11T10:15:48.107000",
            "db": "NVD",
            "id": "CVE-2012-2311",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2013-12-02T00:00:00",
            "db": "CERT/CC",
            "id": "VU#520827",
            "ident": null
          },
          {
            "date": "2015-04-13T22:15:00",
            "db": "BID",
            "id": "53388",
            "ident": null
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2012-2311",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "53388"
          }
        ],
        "trust": 0.3
      },
      "title": {
        "_id": null,
        "data": "PHP-CGI query string parameter vulnerability",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#520827"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "arbitrary",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "116800"
          },
          {
            "db": "PACKETSTORM",
            "id": "122468"
          },
          {
            "db": "PACKETSTORM",
            "id": "112580"
          },
          {
            "db": "PACKETSTORM",
            "id": "113905"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          },
          {
            "db": "PACKETSTORM",
            "id": "112474"
          }
        ],
        "trust": 0.7
      }
    }

    VAR-201404-0592

    Vulnerability from variot - Updated: 2026-04-10 23:34

    The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. OpenSSL 1.0.1 and 1.0.2 beta contain a vulnerability that could disclose sensitive private information to an attacker. This vulnerability is commonly referred to as "heartbleed.". RubyGems actionpack is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause denial-of-service conditions. OpenSSL is a 3rd party product that is embedded with some of HP Software products. This bulletin objective is to notify HP Software customers about products affected by the Heartbleed vulnerability. This weakness potentially allows disclosure of information protected, under normal conditions, by the SSL/TLS protocol. The impacted products appear in the list below are vulnerable due to embedding OpenSSL standard release software. Each bulletin will include a patch and/or mitigation guideline.

    Note: OpenSSL is an external product embedded in HP products.

    Bulletin Applicability:

    This bulletin applies to each OpenSSL component that is embedded within the HP products listed in the security bulletin. The bulletin does not apply to any other 3rd party application (e.g. operating system, web server, or application server) that may be required to be installed by the customer according instructions in the product install guide.

    To learn more about HP Software Incident Response, please visit http://www8.h p.com/us/en/software-solutions/enterprise-software-security-center/response-c enter.html . No user action is required to install them. HP StoreEver ESL G3 Tape Libraries with MCB rev 2 OpenSSL version 1.0.1f for the following firmware versions:

    671H_GS00601 665H_GS12501 663H_GS04601

    HP StoreEver ESL G3 Tape Libraries with MCB rev 1 Open SSL version 1.0.1e in 655H firmware versions:

    655H_GS10201

    HP StoreEver Enterprise Library LTO-6 Tape Drives: all firmware versions. If the library firmware cannot be updated, HP recommends following the Mitigation Instructions below.

    Mitigation Instructions

    The following configuration options that allow access to the Heartbeat function in the vulnerable versions of OpenSSL are not enabled by default. Verify that the following options are "disabled" using the Tape Library GUI:

    Product Configuration Options to Disable TLS Heartbeat Functions

    Secure SMI-S CVTL User

    Note: Disabling these features blocks the vulnerable OpenSSL function in both the ESL G3 Tape Library and the StoreEver Enterprise Library LTO-6 Tape Drives. The basic functionality of the library is not affected by these configuration changes and SSL access to the user interface is not affected by this configuration change or setting. ============================================================================ Ubuntu Security Notice USN-2165-1 April 07, 2014

    openssl vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 13.10
    • Ubuntu 12.10
    • Ubuntu 12.04 LTS

    Summary:

    OpenSSL could be made to expose sensitive information over the network, possibly including private keys.

    Software Description: - openssl: Secure Socket Layer (SSL) cryptographic library and tools

    Details:

    Neel Mehta discovered that OpenSSL incorrectly handled memory in the TLS heartbeat extension. (CVE-2014-0160)

    Yuval Yarom and Naomi Benger discovered that OpenSSL incorrectly handled timing during swap operations in the Montgomery ladder implementation. An attacker could use this issue to perform side-channel attacks and possibly recover ECDSA nonces. (CVE-2014-0076)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 13.10: libssl1.0.0 1.0.1e-3ubuntu1.2

    Ubuntu 12.10: libssl1.0.0 1.0.1c-3ubuntu2.7

    Ubuntu 12.04 LTS: libssl1.0.0 1.0.1-4ubuntu5.12

    After a standard system update you need to reboot your computer to make all the necessary changes. Since this issue may have resulted in compromised private keys, it is recommended to regenerate them.

    Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/openssl-1.0.1g-i486-1_slack14.1.txz: Upgraded. Thanks for Neel Mehta of Google Security for discovering this bug and to Adam Langley agl@chromium.org and Bodo Moeller bmoeller@acm.org for preparing the fix. Fix for the attack described in the paper "Recovering OpenSSL ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack" by Yuval Yarom and Naomi Benger. Details can be obtained from: http://eprint.iacr.org/2014/140 For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0076 ( Security fix ) patches/packages/openssl-solibs-1.0.1g-i486-1_slack14.1.txz: Upgraded. +--------------------------+

    Where to find the new packages: +-----------------------------+

    Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)

    Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.

    Updated packages for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-1.0.1g-i486-1_slack14.0.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-solibs-1.0.1g-i486-1_slack14.0.txz

    Updated packages for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-1.0.1g-x86_64-1_slack14.0.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-solibs-1.0.1g-x86_64-1_slack14.0.txz

    Updated packages for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-1.0.1g-i486-1_slack14.1.txz ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-solibs-1.0.1g-i486-1_slack14.1.txz

    Updated packages for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-1.0.1g-x86_64-1_slack14.1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-solibs-1.0.1g-x86_64-1_slack14.1.txz

    Updated packages for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-1.0.1g-i486-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-1.0.1g-i486-1.txz

    Updated packages for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/openssl-solibs-1.0.1g-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssl-1.0.1g-x86_64-1.txz

    MD5 signatures: +-------------+

    Slackware 14.0 packages: 5467a62ebfbe9a9bfff64dcc4cfcdf7d openssl-1.0.1g-i486-1_slack14.0.txz bdadd9920f2ce6fe4a0a7bd0d96f99df openssl-solibs-1.0.1g-i486-1_slack14.0.txz

    Slackware x86_64 14.0 packages: 11ede2992e2b5d15bd3ffc5807571350 openssl-1.0.1g-x86_64-1_slack14.0.txz 858ea6409aab45a67a880458ce48f923 openssl-solibs-1.0.1g-x86_64-1_slack14.0.txz

    Slackware 14.1 packages: 8638083d9768ffcc4b7c597806ca634c openssl-1.0.1g-i486-1_slack14.1.txz 4d9dfe9db9e1f286ead72fc60971807b openssl-solibs-1.0.1g-i486-1_slack14.1.txz

    Slackware x86_64 14.1 packages: d85f8f451f71dd606f3adb59e582322a openssl-1.0.1g-x86_64-1_slack14.1.txz 43ff4bbfe26f99e7a3b9145146d191a0 openssl-solibs-1.0.1g-x86_64-1_slack14.1.txz

    Slackware -current packages: 265a66855320207d4a7567ac5ae9a747 a/openssl-solibs-1.0.1g-i486-1.txz bf07a4b17f1c78a4081e2cfb711b8748 n/openssl-1.0.1g-i486-1.txz

    Slackware x86_64 -current packages: 27e5135d764bd87bdb784b288e416b22 a/openssl-solibs-1.0.1g-x86_64-1.txz 5ef747eed99ac34102b34d8d0eaed3a8 n/openssl-1.0.1g-x86_64-1.txz

    Installation instructions: +------------------------+

    Upgrade the packages as root:

    upgradepkg openssl-1.0.1g-i486-1_slack14.1.txz openssl-solibs-1.0.1g-i486-1_slack14.1.txz

    +-----+

    Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com

    +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. If bulk software or firmware updates are required, use an unaffected or patched version of HP Smart Update Manager (HP SUM) to do single or batch updates. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: rhevm-spice-client security update Advisory ID: RHSA-2014:0416-01 Product: Red Hat Enterprise Virtualization Advisory URL: https://rhn.redhat.com/errata/RHSA-2014-0416.html Issue date: 2014-04-17 CVE Names: CVE-2012-4929 CVE-2013-0169 CVE-2013-4353 CVE-2014-0160 =====================================================================

    1. Summary:

    Updated rhevm-spice-client packages that fix multiple security issues are now available for Red Hat Enterprise Virtualization Manager 3.

    The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

    1. Relevant releases/architectures:

    RHEV-M 3.3 - noarch

    1. Description:

    Red Hat Enterprise Virtualization Manager provides access to virtual machines using SPICE. These SPICE client packages provide the SPICE client and usbclerk service for both Windows 32-bit operating systems and Windows 64-bit operating systems.

    The rhevm-spice-client package includes the mingw-virt-viewer Windows SPICE client. OpenSSL, a general purpose cryptography library with a TLS implementation, is bundled with mingw-virt-viewer. The mingw-virt-viewer package has been updated to correct the following issues:

    An information disclosure flaw was found in the way OpenSSL handled TLS and DTLS Heartbeat Extension packets. A malicious TLS or DTLS client or server could send a specially crafted TLS or DTLS Heartbeat packet to disclose a limited portion of memory per request from a connected client or server. (CVE-2014-0160)

    It was discovered that OpenSSL leaked timing information when decrypting TLS/SSL and DTLS protocol encrypted records when CBC-mode cipher suites were used. A remote attacker could possibly use this flaw to retrieve plain text from the encrypted packets by using a TLS/SSL or DTLS server as a padding oracle. (CVE-2013-0169)

    A NULL pointer dereference flaw was found in the way OpenSSL handled TLS/SSL protocol handshake packets. A specially crafted handshake packet could cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)

    It was discovered that the TLS/SSL protocol could leak information about plain text when optional compression was used. An attacker able to control part of the plain text sent over an encrypted TLS/SSL connection could possibly use this flaw to recover other portions of the plain text. (CVE-2012-4929)

    Red Hat would like to thank the OpenSSL project for reporting CVE-2014-0160. Upstream acknowledges Neel Mehta of Google Security as the original reporter.

    The updated mingw-virt-viewer Windows SPICE client further includes OpenSSL security fixes that have no security impact on mingw-virt-viewer itself. The security fixes included in this update address the following CVE numbers:

    CVE-2013-6449, CVE-2013-6450, CVE-2012-2686, and CVE-2013-0166

    All Red Hat Enterprise Virtualization Manager users are advised to upgrade to these updated packages, which address these issues.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    857051 - CVE-2012-4929 SSL/TLS CRIME attack against HTTPS 907589 - CVE-2013-0169 SSL/TLS: CBC padding timing attack (lucky-13) 1049058 - CVE-2013-4353 openssl: client NULL dereference crash on malformed handshake packets 1084875 - CVE-2014-0160 openssl: information disclosure in handling of TLS heartbeat extension packets

    1. Package List:

    RHEV-M 3.3:

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/RHEV/SRPMS/rhevm-spice-client-3.3-12.el6_5.src.rpm

    noarch: rhevm-spice-client-x64-cab-3.3-12.el6_5.noarch.rpm rhevm-spice-client-x64-msi-3.3-12.el6_5.noarch.rpm rhevm-spice-client-x86-cab-3.3-12.el6_5.noarch.rpm rhevm-spice-client-x86-msi-3.3-12.el6_5.noarch.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

    1. References:

    https://www.redhat.com/security/data/cve/CVE-2012-4929.html https://www.redhat.com/security/data/cve/CVE-2013-0169.html https://www.redhat.com/security/data/cve/CVE-2013-4353.html https://www.redhat.com/security/data/cve/CVE-2014-0160.html https://access.redhat.com/security/updates/classification/#important

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2014 Red Hat, Inc.

    The HP SIM software itself is not vulnerable to CVE-2014-0160 ("Heartbleed"). -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04239372

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c04239372 Version: 4

    HPSBMU02998 rev.4 - HP System Management Homepage (SMH) running OpenSSL on Linux and Windows, Remote Disclosure of Information, Denial of Service (DoS)

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2014-04-13 Last Updated: 2014-05-13

    Potential Security Impact: Remote disclosure of information, Denial of Service (DoS)

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP System Management Homepage (SMH) running on Linux and Windows. The vulnerabilities could be exploited remotely resulting in Denial of Service (DoS).

    References:

    CVE-2014-0160 (SSRT101501) Disclosure of Information - "Heartbleed" CVE-2013-4353 Denial of Service (DoS) CVE-2013-6449 Denial of Service (DoS) CVE-2013-6450 Denial of Service (DoS)

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP System Management Homepage (SMH) v7.1.2, v7.2, v7.2.1, v7.2.2, v7.3, v7.3.1 for Linux and Windows.

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2013-4353 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2013-6449 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2013-6450 (AV:N/AC:M/Au:N/C:N/I:P/A:P) 5.8 CVE-2014-0160 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has made the following software updates available to resolve the vulnerabilities for the impacted versions of HP System Management Homepage (SMH):

    Product version/Platform Download Location

    SMH 7.2.3 Windows x86 http://www.hp.com/swpublishing/MTX-d1488fd987894bc4ab3fe0ef52

    SMH 7.2.3 Windows x64 http://www.hp.com/swpublishing/MTX-4575754bbb614b58bf0ae1ac37

    SMH 7.3.2.1(B) Windows x86 http://www.hp.com/swpublishing/MTX-27e03b2f9cd24e77adc9dba94a

    SMH 7.3.2.1(B) Windows x64 http://www.hp.com/swpublishing/MTX-37075daeead2433cb41b59ae76

    SMH 7.3.2 Linux x86 http://www.hp.com/swpublishing/MTX-3d92ccccf85f404e8ba36a8178

    SMH 7.3.2 Linux x64 http://www.hp.com/swpublishing/MTX-bfd3c0fb11184796b9428ced37

    Notes

    SMH 7.2.3 recommended for customers running Windows 2003 OS Updated OpenSSL to version 1.0.1g

    Note: If you believe your SMH installation was exploited while it was running components vulnerable to heartbleed, there are some steps to perform after youve upgraded to the non-vulnerable components. These steps include revoking, recreating, and re-importing certificates and resetting passwords that might have been harvested by a malicious attacker using the heartbleed vulnerability.

    Impact on VCA - VCRM communication: VCA configures VCRM by importing the SMH certificate from the SMH of VCA into the SMH of VCRM. When this certificate is deleted & regenerated (as suggested before), it needs to be (re)imported if the user wants to continue with Trust by Certificate option, and the outdated certificate should be revoked (deleted) from each location where it was previously imported. If you use HPSIMs 2-way trust feature, and have imported SMH certificates into HPSIM, you will also need to revoke those SMH certificated from HPSIM and reimport the newly created SMH certificates. Though SMH uses OS credentials using OS-based APIs, user provided credentials are passed from the client (browser) to the server (SMH) using the HTTPS protocol. If you suspect your systems using SMH were exploited while they were vulnerable to heartbleed, these passwords need to be reset.

    Frequently Asked Questions

    Will updated systems require a reboot after applying the SMH patch? No, reboot of the system will not be required. Installing the new build is sufficient to get back to the normal state. Is a Firmware Update necessary in addition to the SMH patch? No, only the SMH update is sufficient to remove the heartbleed-vulnerable version of SMH. Will new certificates be issued along with the patch, or need to be handled separately? If you suspect the certificate has been compromised due to this vulnerability, we do recommend to delete and revoke the certificate, or SMH will reuse the existing certificate. New certificate will be created when SMH service starts (at the end of the fresh / upgrade installation). Instructions on deleting the certificate are in the notes above. Where can I get SMH documentation? All major documents are available at: http://h17007.www1.hp.com/us/en/enterprise/servers/solutions/info-library Select HP Insight Management under Product and Solutions & check HP System Management Homepage to get SMH related documents.

    What are the recommended upgrade paths? See the table below: SMH DVD SPP Recommended SMH update for Linux Recommended SMH update for Windows 2003 and Widows 2003 R2 Recommended SMH update for other Windows OS versions

    v7.1.2 v7.1.2 2012.10.0 v7.3.2 v7.2.3 v7.3.2

    v7.2.0 v7.2.0 2013.02.0(B) v7.3.2 v7.2.3 v7.3.2

    v7.2.1 v7.2u1

    v7.3.2 v7.2.3 v7.3.2

    v7.2.2 v7.2u2 2013.09.0(B) v7.3.2 v7.2.3 v7.3.2

    v7.3.0 v7.3.0

    v7.3.2 not supported v7.3.2

    v7.3.1 v7.3.1 2014.02.0 v7.3.2 not supported v7.3.2

    How can I verify whether my setup is patched successfully? SMH version can be verified by executing following command on: Windows: hp\hpsmh\bin\smhlogreader version Linux: /opt/hp/hpsmh/bin/smhlogreader version Will VCA-VCRM communication be impacted due to the SMH certificate being deleted? VCA configures VCRM by importing the SMH certificate (sslshare\cert.pem) from the SMH of VCA to the SMH of VCRM. When this certificate is deleted & regenerated (as suggested before), it needs to be (re)imported if user wants to continue with Trust by Certificate option, and remove the old, previously imported certificate. Should I reset password on all managed nodes, where SMH was/is running? Though SMH uses OS credentials using OS based APIs, user-provided credentials are passed from the client (browser) to the server (SMH) using the HTTPS protocol. Passwords need to be reset if you suspect the vulnerable version of SMH was exploited by malicious users/ hackers.

    HISTORY Version:1 (rev.1) - 13 April 2014 Initial release Version:2 (rev.2) - 17 April 2014 SMH 7.2.3 and 7.3.2 released Version:3 (rev.3) - 30 April 2014 SMH 7.3.2.1(B) released Version:4 (rev.4) - 13 May 2014 Added additional remediation steps for post update installation

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2014 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux)

    iEYEARECAAYFAlNyLMAACgkQ4B86/C0qfVm6RQCg4JuHEt+iZq+td37hPIp27qrd fm4AoKM1d7+F05Xo87Bicnmh0OHidg/O =bK11 -----END PGP SIGNATURE----- . This bulletin will give you the information needed to update your HP Insight Control server deployment solution.

    Install HP Management Agents for Windows x86/x64 Install HP Management Agents for RHEL 5 x64 Install HP Management Agents for RHEL 6 x64 Install HP Management Agents for SLES 10 x64 Install HP Management Agents for SLES 11 x64

    References: CVE-2014-0160 (SSRT101538)

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Insight Control server deployment v7.1.2, v7.2.0, v7.2.1, v7.2.2

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2014-0160 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP is actively working to address this vulnerability for the impacted versions of HP Insight Control server deployment. This bulletin may be revised. It is recommended that customers take the following approaches depending on the version of HP Insight Control server deployment:

    To address the vulnerability in an initial installation of HP Insight Control server deployment v7.1.2, v7.2.0, v7.2.1, and v7.2.2 only follow steps 1 through Step 3 of the following procedure, before initiating an operating system deployment.

    To address the vulnerability in a previous installation of HP Insight Control server deployment v7.1.2, v7.2.0, v7.2.1, and v7.2.2 follow all steps in the following procedure.

    Delete the smhamd64-.exe/smhx86-.exe" from Component Copy Location listed in the following table, row 1,2,3,4. Delete the affected hpsmh-7.*.rpm" from Component Copy Location listed in the following table, row 5. In sequence, perform the steps from left to right in the following table. First, download components from Download Link; Second, rename the component as suggested in Rename to. Third, copy the component to the location suggested in Component Copy Location. Table Row Number Download Link Rename to Component Copy Location

    1 http://www.hp.com/swpublishing/MTX-d1488fd987894bc4ab3fe0ef52 smhx86-cp023242.exe \express\hpfeatures\hpagents-ws\components\Win2003

    2 http://www.hp.com/swpublishing/MTX-4575754bbb614b58bf0ae1ac37 smhamd64-cp023243.exe \express\hpfeatures\hpagents-ws\components\Win2003

    3 http://www.hp.com/swpublishing/MTX-2e19c856f0e84e20a14c63ecd0 smhamd64-cp023240.exe \express\hpfeatures\hpagents-ws\components\Win2008

    4 http://www.hp.com/swpublishing/MTX-41199f68c1144acb84a5798bf0 smhx86-cp023239.exe \express\hpfeatures\hpagents-ws\components\Win2008

    5 http://www.hp.com/swpublishing/MTX-bfd3c0fb11184796b9428ced37 Do not rename the downloaded component for this step. \express\hpfeatures\hpagents-sles11-x64\components \express\hpfeatures\hpagents-sles10-x64\components \express\hpfeatures\hpagents-rhel5-x64\components \express\hpfeatures\hpagents-rhel6-x64\components

    Table 1

    Initiate Install HP Management Agents for SLES 11 x64 on targets running SLES11 x64. Initiate Install HP Management Agents for SLES 10 x64 on targets running SLES10 x64. Initiate Install HP Management Agents for RHEL 6 x64 on targets running RHEL 6 x64. Initiate Install HP Management Agents for RHEL 5 x64 on targets running RHEL 5 x64

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "mivoice",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "1.3.2.2"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "20"
          },
          {
            "_id": null,
            "model": "v60",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intellian",
            "version": "1.15"
          },
          {
            "_id": null,
            "model": "s9922l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ricon",
            "version": "16.10.3\\(3794\\)"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "mivoice",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "1.1.2.5"
          },
          {
            "_id": null,
            "model": "gluster storage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "application processing engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "v100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intellian",
            "version": "1.24"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1g"
          },
          {
            "_id": null,
            "model": "simatic s7-1500",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "splunk",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "splunk",
            "version": "6.0.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "19"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.10"
          },
          {
            "_id": null,
            "model": "mivoice",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "1.1.3.3"
          },
          {
            "_id": null,
            "model": "symantec messaging gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "broadcom",
            "version": "10.6.1"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "v100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intellian",
            "version": "1.20"
          },
          {
            "_id": null,
            "model": "v60",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intellian",
            "version": "1.25"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "13.10"
          },
          {
            "_id": null,
            "model": "cp 1543-1",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "wincc open architecture",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.12"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "7.3.0.104"
          },
          {
            "_id": null,
            "model": "splunk",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "splunk",
            "version": "6.0.3"
          },
          {
            "_id": null,
            "model": "mivoice",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "1.2.0.11"
          },
          {
            "_id": null,
            "model": "elan-8.2",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.3.3"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "storage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "server",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "filezilla",
            "version": "0.9.44"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "simatic s7-1500t",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mivoice",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "1.4.0.102"
          },
          {
            "_id": null,
            "model": "v100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intellian",
            "version": "1.21"
          },
          {
            "_id": null,
            "model": "symantec messaging gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "broadcom",
            "version": "10.6.0"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "amazon",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "arch linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "aruba",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "attachmate",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "bee ware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ca",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "extreme",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fedora",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "global associates",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "google",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hitachi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mandriva s a",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "marklogic",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nvidia",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openvpn",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sophos",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "symantec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "unisys",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vmware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "watchguard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nginx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "opensuse",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "pfsense",
            "version": null
          },
          {
            "_id": null,
            "model": "studio onsite",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "suse",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "s u s e",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "s u s e",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "software collections for rhel",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "redhat",
            "version": "0"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "puppetlabs",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chef",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "opscode",
            "version": "11.1.2"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chef",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "opscode",
            "version": "11.1.3"
          },
          {
            "_id": null,
            "model": "webyast",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "lifecycle management server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "actionpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rubygems",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "actionpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rubygems",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "actionpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rubygems",
            "version": "3.2.15"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "actionpack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "rubygems",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "actionpack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "rubygems",
            "version": "3.2.16"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.7"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.5"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.10"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails 3.1.0.rc5",
            "scope": null,
            "trust": 0.3,
            "vendor": "ruby",
            "version": null
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.0.3"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.8.4"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.14"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.12"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.4"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "1.2.7"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.12"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.11"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.17"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "cloudforms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.12"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.15"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.7.1"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.13"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.8.3"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.16"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.6"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.18"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.4"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.17"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.7"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.8.0"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.5.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.6"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.7"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.8"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.20"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.1.2"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.5.1"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.6"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.4"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.5"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "3.1.3"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.7.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.9"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.16"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails 3.1.0.rc6",
            "scope": null,
            "trust": 0.3,
            "vendor": "ruby",
            "version": null
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.1.8"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.11"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.3"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.0.19"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.13"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.11"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.8"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.10"
          },
          {
            "_id": null,
            "model": "on rails ruby on rails",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ruby",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.8.2"
          },
          {
            "_id": null,
            "model": "puppet enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "puppetlabs",
            "version": "2.7"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          },
          {
            "db": "BID",
            "id": "64074"
          },
          {
            "db": "BID",
            "id": "65604"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "HP",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "126605"
          },
          {
            "db": "PACKETSTORM",
            "id": "126954"
          },
          {
            "db": "PACKETSTORM",
            "id": "126284"
          },
          {
            "db": "PACKETSTORM",
            "id": "126361"
          },
          {
            "db": "PACKETSTORM",
            "id": "126417"
          },
          {
            "db": "PACKETSTORM",
            "id": "126305"
          },
          {
            "db": "PACKETSTORM",
            "id": "126644"
          },
          {
            "db": "PACKETSTORM",
            "id": "126164"
          },
          {
            "db": "PACKETSTORM",
            "id": "127279"
          },
          {
            "db": "PACKETSTORM",
            "id": "127085"
          },
          {
            "db": "PACKETSTORM",
            "id": "126784"
          }
        ],
        "trust": 1.1
      },
      "cve": "CVE-2014-0160",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2014-0160",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "availabilityRequirement": "NOT DEFINED",
                "baseScore": 5.0,
                "collateralDamagePotential": "LOW-MEDIUM",
                "confidentialityImpact": "PARTIAL",
                "confidentialityRequirement": "HIGH",
                "enviromentalScore": 6.5,
                "exploitability": "FUNCTIONAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2014-0160",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "integrityRequirement": "HIGH",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "remediationLevel": "OFFICIAL FIX",
                "reportConfidence": "CONFIRMED",
                "severity": "MEDIUM",
                "targetDistribution": "HIGH",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 3.9,
                "id": "CVE-2014-0160",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 2.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-0160",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "id": "CVE-2014-0160",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-0160",
                "trust": 0.8,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2014-0160",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. OpenSSL 1.0.1 and 1.0.2 beta contain a vulnerability that could disclose sensitive private information to an attacker. This vulnerability is commonly referred to as \"heartbleed.\". RubyGems actionpack is prone to a denial-of-service vulnerability. \nRemote attackers can exploit this issue to cause denial-of-service conditions. \nOpenSSL is a 3rd party product that is embedded with some of HP Software\nproducts. This bulletin objective is to notify HP Software customers about\nproducts affected by the Heartbleed vulnerability. This weakness\npotentially allows disclosure of information protected, under normal\nconditions, by the SSL/TLS protocol. The impacted products appear in the list\nbelow are vulnerable due to embedding OpenSSL standard release software. Each bulletin will include a patch and/or mitigation\nguideline. \n\nNote: OpenSSL is an external product embedded in HP products. \n\nBulletin Applicability:\n\nThis bulletin applies to each OpenSSL component that is embedded within the\nHP products listed in the security bulletin. The bulletin does not apply to\nany other 3rd party application (e.g. operating system, web server, or\napplication server) that may be required to be installed by the customer\naccording instructions in the product install guide. \n\nTo learn more about HP Software Incident Response, please visit http://www8.h\np.com/us/en/software-solutions/enterprise-software-security-center/response-c\nenter.html . No user action is\nrequired to install them. \nHP StoreEver ESL G3 Tape Libraries with MCB rev 2  OpenSSL version 1.0.1f for\nthe following firmware versions:\n\n671H_GS00601\n665H_GS12501\n663H_GS04601\n\nHP StoreEver ESL G3 Tape Libraries with MCB rev 1  Open SSL version 1.0.1e in\n655H firmware versions:\n\n655H_GS10201\n\nHP StoreEver Enterprise Library LTO-6 Tape Drives: all firmware versions. \nIf the library firmware cannot be updated, HP recommends following the\nMitigation Instructions below. \n\nMitigation Instructions\n\nThe following configuration options that allow access to the Heartbeat\nfunction in the vulnerable versions of OpenSSL are not enabled by default. \nVerify that the following options are \"disabled\" using the Tape Library GUI:\n\nProduct Configuration Options to Disable TLS Heartbeat Functions\n\nSecure SMI-S\nCVTL User\n\nNote: Disabling these features blocks the vulnerable OpenSSL function in both\nthe ESL G3 Tape Library and the StoreEver Enterprise Library LTO-6 Tape\nDrives. The basic functionality of the library is not affected by these\nconfiguration changes and SSL access to the user interface is not affected by\nthis configuration change or setting. ============================================================================\nUbuntu Security Notice USN-2165-1\nApril 07, 2014\n\nopenssl vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 13.10\n- Ubuntu 12.10\n- Ubuntu 12.04 LTS\n\nSummary:\n\nOpenSSL could be made to expose sensitive information over the network,\npossibly including private keys. \n\nSoftware Description:\n- openssl: Secure Socket Layer (SSL) cryptographic library and tools\n\nDetails:\n\nNeel Mehta discovered that OpenSSL incorrectly handled memory in the TLS\nheartbeat extension. (CVE-2014-0160)\n\nYuval Yarom and Naomi Benger discovered that OpenSSL incorrectly handled\ntiming during swap operations in the Montgomery ladder implementation. An\nattacker could use this issue to perform side-channel attacks and possibly\nrecover ECDSA nonces. (CVE-2014-0076)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 13.10:\n  libssl1.0.0                     1.0.1e-3ubuntu1.2\n\nUbuntu 12.10:\n  libssl1.0.0                     1.0.1c-3ubuntu2.7\n\nUbuntu 12.04 LTS:\n  libssl1.0.0                     1.0.1-4ubuntu5.12\n\nAfter a standard system update you need to reboot your computer to make all\nthe necessary changes. Since this issue may have resulted in compromised\nprivate keys, it is recommended to regenerate them. \n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n+--------------------------+\npatches/packages/openssl-1.0.1g-i486-1_slack14.1.txz:  Upgraded. \n  Thanks for Neel Mehta of Google Security for discovering this bug and to\n  Adam Langley \u003cagl@chromium.org\u003e and Bodo Moeller \u003cbmoeller@acm.org\u003e for\n  preparing the fix. \n  Fix for the attack described in the paper \"Recovering OpenSSL\n  ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack\"\n  by Yuval Yarom and Naomi Benger. Details can be obtained from:\n  http://eprint.iacr.org/2014/140\n  For more information, see:\n    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160\n    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0076\n  (* Security fix *)\npatches/packages/openssl-solibs-1.0.1g-i486-1_slack14.1.txz:  Upgraded. \n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project!  :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated packages for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-1.0.1g-i486-1_slack14.0.txz\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssl-solibs-1.0.1g-i486-1_slack14.0.txz\n\nUpdated packages for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-1.0.1g-x86_64-1_slack14.0.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssl-solibs-1.0.1g-x86_64-1_slack14.0.txz\n\nUpdated packages for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-1.0.1g-i486-1_slack14.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssl-solibs-1.0.1g-i486-1_slack14.1.txz\n\nUpdated packages for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-1.0.1g-x86_64-1_slack14.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssl-solibs-1.0.1g-x86_64-1_slack14.1.txz\n\nUpdated packages for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/openssl-solibs-1.0.1g-i486-1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssl-1.0.1g-i486-1.txz\n\nUpdated packages for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/openssl-solibs-1.0.1g-x86_64-1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssl-1.0.1g-x86_64-1.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 14.0 packages:\n5467a62ebfbe9a9bfff64dcc4cfcdf7d  openssl-1.0.1g-i486-1_slack14.0.txz\nbdadd9920f2ce6fe4a0a7bd0d96f99df  openssl-solibs-1.0.1g-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 packages:\n11ede2992e2b5d15bd3ffc5807571350  openssl-1.0.1g-x86_64-1_slack14.0.txz\n858ea6409aab45a67a880458ce48f923  openssl-solibs-1.0.1g-x86_64-1_slack14.0.txz\n\nSlackware 14.1 packages:\n8638083d9768ffcc4b7c597806ca634c  openssl-1.0.1g-i486-1_slack14.1.txz\n4d9dfe9db9e1f286ead72fc60971807b  openssl-solibs-1.0.1g-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 packages:\nd85f8f451f71dd606f3adb59e582322a  openssl-1.0.1g-x86_64-1_slack14.1.txz\n43ff4bbfe26f99e7a3b9145146d191a0  openssl-solibs-1.0.1g-x86_64-1_slack14.1.txz\n\nSlackware -current packages:\n265a66855320207d4a7567ac5ae9a747  a/openssl-solibs-1.0.1g-i486-1.txz\nbf07a4b17f1c78a4081e2cfb711b8748  n/openssl-1.0.1g-i486-1.txz\n\nSlackware x86_64 -current packages:\n27e5135d764bd87bdb784b288e416b22  a/openssl-solibs-1.0.1g-x86_64-1.txz\n5ef747eed99ac34102b34d8d0eaed3a8  n/openssl-1.0.1g-x86_64-1.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the packages as root:\n# upgradepkg openssl-1.0.1g-i486-1_slack14.1.txz openssl-solibs-1.0.1g-i486-1_slack14.1.txz\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list:                          |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message:                                                     |\n|                                                                        |\n|   unsubscribe slackware-security                                       |\n|                                                                        |\n| You will get a confirmation message back containing instructions to    |\n| complete the process.  Please do not reply to this email address. \nIf bulk software or firmware updates are required, use an unaffected or\npatched version of HP Smart Update Manager (HP SUM) to do single or batch\nupdates. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: rhevm-spice-client security update\nAdvisory ID:       RHSA-2014:0416-01\nProduct:           Red Hat Enterprise Virtualization\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2014-0416.html\nIssue date:        2014-04-17\nCVE Names:         CVE-2012-4929 CVE-2013-0169 CVE-2013-4353 \n                   CVE-2014-0160 \n=====================================================================\n\n1. Summary:\n\nUpdated rhevm-spice-client packages that fix multiple security issues are\nnow available for Red Hat Enterprise Virtualization Manager 3. \n\nThe Red Hat Security Response Team has rated this update as having\nImportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRHEV-M 3.3 - noarch\n\n3. Description:\n\nRed Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems. \n\nThe rhevm-spice-client package includes the mingw-virt-viewer Windows SPICE\nclient. OpenSSL, a general purpose cryptography library with a TLS\nimplementation, is bundled with mingw-virt-viewer. The mingw-virt-viewer\npackage has been updated to correct the following issues:\n\nAn information disclosure flaw was found in the way OpenSSL handled TLS and\nDTLS Heartbeat Extension packets. A malicious TLS or DTLS client or server\ncould send a specially crafted TLS or DTLS Heartbeat packet to disclose a\nlimited portion of memory per request from a connected client or server. (CVE-2014-0160)\n\nIt was discovered that OpenSSL leaked timing information when decrypting\nTLS/SSL and DTLS protocol encrypted records when CBC-mode cipher suites\nwere used. A remote attacker could possibly use this flaw to retrieve plain\ntext from the encrypted packets by using a TLS/SSL or DTLS server as a\npadding oracle. (CVE-2013-0169)\n\nA NULL pointer dereference flaw was found in the way OpenSSL handled\nTLS/SSL protocol handshake packets. A specially crafted handshake packet\ncould cause a TLS/SSL client using OpenSSL to crash. (CVE-2013-4353)\n\nIt was discovered that the TLS/SSL protocol could leak information about\nplain text when optional compression was used. An attacker able to control\npart of the plain text sent over an encrypted TLS/SSL connection could\npossibly use this flaw to recover other portions of the plain text. \n(CVE-2012-4929)\n\nRed Hat would like to thank the OpenSSL project for reporting\nCVE-2014-0160. Upstream acknowledges Neel Mehta of Google Security as the\noriginal reporter. \n\nThe updated mingw-virt-viewer Windows SPICE client further includes OpenSSL\nsecurity fixes that have no security impact on mingw-virt-viewer itself. \nThe security fixes included in this update address the following CVE\nnumbers:\n\nCVE-2013-6449, CVE-2013-6450, CVE-2012-2686, and CVE-2013-0166\n\nAll Red Hat Enterprise Virtualization Manager users are advised to upgrade\nto these updated packages, which address these issues. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n857051 - CVE-2012-4929 SSL/TLS CRIME attack against HTTPS\n907589 - CVE-2013-0169 SSL/TLS: CBC padding timing attack (lucky-13)\n1049058 - CVE-2013-4353 openssl: client NULL dereference crash on malformed handshake packets\n1084875 - CVE-2014-0160 openssl: information disclosure in handling of TLS heartbeat extension packets\n\n6. Package List:\n\nRHEV-M 3.3:\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/RHEV/SRPMS/rhevm-spice-client-3.3-12.el6_5.src.rpm\n\nnoarch:\nrhevm-spice-client-x64-cab-3.3-12.el6_5.noarch.rpm\nrhevm-spice-client-x64-msi-3.3-12.el6_5.noarch.rpm\nrhevm-spice-client-x86-cab-3.3-12.el6_5.noarch.rpm\nrhevm-spice-client-x86-msi-3.3-12.el6_5.noarch.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2012-4929.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-0169.html\nhttps://www.redhat.com/security/data/cve/CVE-2013-4353.html\nhttps://www.redhat.com/security/data/cve/CVE-2014-0160.html\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e.  More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2014 Red Hat, Inc. \n\nThe HP SIM software itself is not vulnerable to CVE-2014-0160 (\"Heartbleed\"). -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04239372\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04239372\nVersion: 4\n\nHPSBMU02998 rev.4 - HP System Management Homepage (SMH) running OpenSSL on\nLinux and Windows, Remote Disclosure of Information, Denial of Service (DoS)\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2014-04-13\nLast Updated: 2014-05-13\n\nPotential Security Impact: Remote disclosure of information, Denial of\nService (DoS)\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP System\nManagement Homepage (SMH) running on Linux and Windows. The vulnerabilities\ncould be exploited remotely resulting in Denial of Service (DoS). \n\nReferences:\n\nCVE-2014-0160 (SSRT101501) Disclosure of Information - \"Heartbleed\"\nCVE-2013-4353 Denial of Service (DoS)\nCVE-2013-6449 Denial of Service (DoS)\nCVE-2013-6450 Denial of Service (DoS)\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP System Management Homepage (SMH) v7.1.2, v7.2, v7.2.1, v7.2.2, v7.3,\nv7.3.1 for Linux and Windows. \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2013-4353    (AV:N/AC:M/Au:N/C:N/I:N/A:P)       4.3\nCVE-2013-6449    (AV:N/AC:M/Au:N/C:N/I:N/A:P)       4.3\nCVE-2013-6450    (AV:N/AC:M/Au:N/C:N/I:P/A:P)       5.8\nCVE-2014-0160    (AV:N/AC:L/Au:N/C:P/I:N/A:N)       5.0\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has made the following software updates available to resolve the\nvulnerabilities for the impacted versions of HP System Management Homepage\n(SMH):\n\nProduct version/Platform\n Download Location\n\nSMH 7.2.3 Windows x86\n http://www.hp.com/swpublishing/MTX-d1488fd987894bc4ab3fe0ef52\n\nSMH 7.2.3 Windows x64\n http://www.hp.com/swpublishing/MTX-4575754bbb614b58bf0ae1ac37\n\nSMH 7.3.2.1(B) Windows x86\n http://www.hp.com/swpublishing/MTX-27e03b2f9cd24e77adc9dba94a\n\nSMH 7.3.2.1(B) Windows x64\n http://www.hp.com/swpublishing/MTX-37075daeead2433cb41b59ae76\n\nSMH 7.3.2 Linux x86\n http://www.hp.com/swpublishing/MTX-3d92ccccf85f404e8ba36a8178\n\nSMH 7.3.2 Linux x64\n http://www.hp.com/swpublishing/MTX-bfd3c0fb11184796b9428ced37\n\nNotes\n\nSMH 7.2.3 recommended for customers running Windows 2003 OS\nUpdated OpenSSL to version 1.0.1g\n\nNote: If you believe your SMH installation was exploited while it was running\ncomponents vulnerable to heartbleed, there are some steps to perform after\nyouve upgraded to the non-vulnerable components. These steps include\nrevoking, recreating, and re-importing certificates and resetting passwords\nthat might have been harvested by a malicious attacker using the heartbleed\nvulnerability. \n\nImpact on VCA - VCRM communication: VCA configures VCRM by importing the SMH\ncertificate from the SMH of VCA into the SMH of VCRM. When this certificate\nis deleted \u0026 regenerated (as suggested before), it needs to be (re)imported\nif the user wants to continue with Trust by Certificate option, and the\noutdated certificate should be revoked (deleted) from each location where it\nwas previously imported. \nIf you use HPSIMs 2-way trust feature, and have imported SMH certificates\ninto HPSIM, you will also need to revoke those SMH certificated from HPSIM\nand reimport the newly created SMH certificates. \nThough SMH uses OS credentials using OS-based APIs, user provided credentials\nare passed from the client (browser) to the server (SMH) using the HTTPS\nprotocol. If you suspect your systems using SMH were exploited while they\nwere vulnerable to heartbleed, these passwords need to be reset. \n\nFrequently Asked Questions\n\nWill updated systems require a reboot after applying the SMH patch?\nNo, reboot of the system will not be required. Installing the new build is\nsufficient to get back to the normal state. \nIs a Firmware Update necessary in addition to the SMH patch?\nNo, only the SMH update is sufficient to remove the heartbleed-vulnerable\nversion of SMH. \nWill new certificates be issued along with the patch, or need to be handled\nseparately?\nIf you suspect the certificate has been compromised due to this\nvulnerability, we do recommend to delete and revoke the certificate, or SMH\nwill reuse the existing certificate. New certificate will be created when SMH\nservice starts (at the end of the fresh / upgrade installation). Instructions\non deleting the certificate are in the notes above. \nWhere can I get SMH documentation?\nAll major documents are available at:\nhttp://h17007.www1.hp.com/us/en/enterprise/servers/solutions/info-library\nSelect HP Insight Management under Product and Solutions \u0026 check HP System\nManagement Homepage to get SMH related documents. \n\nWhat are the recommended upgrade paths?\nSee the table below:\nSMH\n DVD\n SPP\n Recommended SMH update for Linux\n Recommended SMH update for Windows 2003 and Widows 2003 R2\n Recommended SMH update for other Windows OS versions\n\nv7.1.2\n v7.1.2\n 2012.10.0\n v7.3.2\n v7.2.3\n v7.3.2\n\nv7.2.0\n v7.2.0\n 2013.02.0(B)\n v7.3.2\n v7.2.3\n v7.3.2\n\nv7.2.1\n v7.2u1\n\n v7.3.2\n v7.2.3\n v7.3.2\n\nv7.2.2\n v7.2u2\n 2013.09.0(B)\n v7.3.2\n v7.2.3\n v7.3.2\n\nv7.3.0\n v7.3.0\n\n v7.3.2\n not supported\n v7.3.2\n\nv7.3.1\n v7.3.1\n 2014.02.0\n v7.3.2\n not supported\n v7.3.2\n\nHow can I verify whether my setup is patched successfully?\nSMH version can be verified by executing following command on:\nWindows: hp\\hpsmh\\bin\\smhlogreader version\nLinux: /opt/hp/hpsmh/bin/smhlogreader version\nWill VCA-VCRM communication be impacted due to the SMH certificate being\ndeleted?\nVCA configures VCRM by importing the SMH certificate (sslshare\\cert.pem) from\nthe SMH of VCA to the SMH of VCRM. When this certificate is deleted \u0026\nregenerated (as suggested before), it needs to be (re)imported if user wants\nto continue with Trust by Certificate option, and remove the old, previously\nimported certificate. \nShould I reset password on all managed nodes, where SMH was/is running?\nThough SMH uses OS credentials using OS based APIs, user-provided credentials\nare passed from the client (browser) to the server (SMH) using the HTTPS\nprotocol. Passwords need to be reset if you suspect the vulnerable version of\nSMH was exploited by malicious users/ hackers. \n\nHISTORY\nVersion:1 (rev.1) - 13 April 2014 Initial release\nVersion:2 (rev.2) - 17 April 2014 SMH 7.2.3 and 7.3.2 released\nVersion:3 (rev.3) - 30 April 2014 SMH 7.3.2.1(B) released\nVersion:4 (rev.4) - 13 May 2014 Added additional remediation steps for post\nupdate installation\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2014 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.13 (GNU/Linux)\n\niEYEARECAAYFAlNyLMAACgkQ4B86/C0qfVm6RQCg4JuHEt+iZq+td37hPIp27qrd\nfm4AoKM1d7+F05Xo87Bicnmh0OHidg/O\n=bK11\n-----END PGP SIGNATURE-----\n. This bulletin will give you the information needed to\nupdate your HP Insight Control server deployment solution. \n\nInstall HP Management Agents for Windows x86/x64\nInstall HP Management Agents for RHEL 5 x64\nInstall HP Management Agents for RHEL 6 x64\nInstall HP Management Agents for SLES 10 x64\nInstall HP Management Agents for SLES 11 x64\n\nReferences: CVE-2014-0160 (SSRT101538)\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Insight Control server deployment v7.1.2, v7.2.0, v7.2.1, v7.2.2\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2014-0160    (AV:N/AC:L/Au:N/C:P/I:N/A:N)       5.0\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP is actively working to address this vulnerability for the impacted\nversions of HP Insight Control server deployment. This bulletin may be\nrevised. It is recommended that customers take the following approaches\ndepending on the version of HP Insight Control server deployment:\n\nTo address the vulnerability in an initial installation of HP Insight Control\nserver deployment v7.1.2, v7.2.0, v7.2.1, and v7.2.2 only follow steps 1\nthrough Step 3 of the following procedure, before initiating an operating\nsystem deployment. \n\nTo address the vulnerability in a previous installation of HP Insight Control\nserver deployment v7.1.2, v7.2.0, v7.2.1, and v7.2.2 follow all steps in the\nfollowing procedure. \n\nDelete the smhamd64-*.exe/smhx86-*.exe\" from Component Copy Location listed\nin the following table, row 1,2,3,4. \nDelete the affected hpsmh-7.*.rpm\" from Component Copy Location listed in the\nfollowing table, row 5. \nIn sequence, perform the steps from left to right in the following table. \nFirst, download components from Download Link; Second, rename the component\nas suggested in Rename to. Third, copy the component to the location\nsuggested in Component Copy Location. \nTable Row Number\n Download Link\n Rename to\n Component Copy Location\n\n1\n http://www.hp.com/swpublishing/MTX-d1488fd987894bc4ab3fe0ef52\n smhx86-cp023242.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2003\n\n2\n http://www.hp.com/swpublishing/MTX-4575754bbb614b58bf0ae1ac37\n smhamd64-cp023243.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2003\n\n3\n http://www.hp.com/swpublishing/MTX-2e19c856f0e84e20a14c63ecd0\n smhamd64-cp023240.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2008\n\n4\n http://www.hp.com/swpublishing/MTX-41199f68c1144acb84a5798bf0\n smhx86-cp023239.exe\n \\\\express\\hpfeatures\\hpagents-ws\\components\\Win2008\n\n5\n http://www.hp.com/swpublishing/MTX-bfd3c0fb11184796b9428ced37\n Do not rename the downloaded component for this step. \n \\\\express\\hpfeatures\\hpagents-sles11-x64\\components\n\\\\express\\hpfeatures\\hpagents-sles10-x64\\components\n\\\\express\\hpfeatures\\hpagents-rhel5-x64\\components\n\\\\express\\hpfeatures\\hpagents-rhel6-x64\\components\n\nTable 1\n\nInitiate Install HP Management Agents for SLES 11 x64 on targets running\nSLES11 x64. \nInitiate Install HP Management Agents for SLES 10 x64 on targets running\nSLES10 x64. \nInitiate Install HP Management Agents for RHEL 6 x64 on targets running RHEL\n6 x64. \nInitiate Install HP Management Agents for RHEL 5 x64 on targets running RHEL\n5 x64",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          },
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          },
          {
            "db": "BID",
            "id": "64074"
          },
          {
            "db": "BID",
            "id": "65604"
          },
          {
            "db": "PACKETSTORM",
            "id": "126644"
          },
          {
            "db": "PACKETSTORM",
            "id": "126784"
          },
          {
            "db": "PACKETSTORM",
            "id": "127085"
          },
          {
            "db": "PACKETSTORM",
            "id": "127279"
          },
          {
            "db": "PACKETSTORM",
            "id": "126045"
          },
          {
            "db": "PACKETSTORM",
            "id": "126086"
          },
          {
            "db": "PACKETSTORM",
            "id": "126164"
          },
          {
            "db": "PACKETSTORM",
            "id": "126305"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160"
          },
          {
            "db": "PACKETSTORM",
            "id": "126197"
          },
          {
            "db": "PACKETSTORM",
            "id": "126361"
          },
          {
            "db": "PACKETSTORM",
            "id": "126284"
          },
          {
            "db": "PACKETSTORM",
            "id": "126954"
          },
          {
            "db": "PACKETSTORM",
            "id": "126605"
          },
          {
            "db": "PACKETSTORM",
            "id": "126417"
          }
        ],
        "trust": 3.51
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.kb.cert.org/vuls/id/720951",
            "trust": 0.8,
            "type": "unknown"
          },
          {
            "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=32745",
            "trust": 0.4,
            "type": "exploit"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-0160",
            "trust": 3.9
          },
          {
            "db": "EXPLOIT-DB",
            "id": "32745",
            "trust": 1.9
          },
          {
            "db": "CERT/CC",
            "id": "VU#720951",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "57721",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59243",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57836",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57968",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59347",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57966",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57483",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57347",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59139",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030079",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030074",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030081",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030080",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030026",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030077",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030082",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1030078",
            "trust": 1.1
          },
          {
            "db": "BID",
            "id": "66690",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "32764",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA14-098A",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-635659",
            "trust": 1.1
          },
          {
            "db": "BID",
            "id": "64074",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "65604",
            "trust": 0.3
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-14-135-02",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126605",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126954",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126284",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126361",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126197",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126417",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126305",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126644",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126164",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126086",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126045",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127279",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127085",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126784",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160"
          },
          {
            "db": "BID",
            "id": "64074"
          },
          {
            "db": "BID",
            "id": "65604"
          },
          {
            "db": "PACKETSTORM",
            "id": "126605"
          },
          {
            "db": "PACKETSTORM",
            "id": "126954"
          },
          {
            "db": "PACKETSTORM",
            "id": "126284"
          },
          {
            "db": "PACKETSTORM",
            "id": "126361"
          },
          {
            "db": "PACKETSTORM",
            "id": "126197"
          },
          {
            "db": "PACKETSTORM",
            "id": "126417"
          },
          {
            "db": "PACKETSTORM",
            "id": "126305"
          },
          {
            "db": "PACKETSTORM",
            "id": "126644"
          },
          {
            "db": "PACKETSTORM",
            "id": "126164"
          },
          {
            "db": "PACKETSTORM",
            "id": "126086"
          },
          {
            "db": "PACKETSTORM",
            "id": "126045"
          },
          {
            "db": "PACKETSTORM",
            "id": "127279"
          },
          {
            "db": "PACKETSTORM",
            "id": "127085"
          },
          {
            "db": "PACKETSTORM",
            "id": "126784"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "id": "VAR-201404-0592",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.6038711649999999
      },
      "last_update_date": "2026-04-10T23:34:59.841000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2017/01/23/heartbleed_2017/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2014/04/24/apple_posts_updates_for_heartbleed_flaw_in_airport/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2014/04/11/hackers_hammering_heartbleed/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2014/04/09/heartbleed_vuln_analysis/"
          },
          {
            "title": "Debian CVElist Bug Report Logs: CVE-2014-0160 heartbeat read overrun (heartbleed)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=e4799ab8fe4804274ba2db4d65cd867b"
          },
          {
            "title": "Debian Security Advisories: DSA-2896-1 openssl -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=264ec318be06a69e28012f62b2dc5bb7"
          },
          {
            "title": "Ubuntu Security Notice: openssl vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2165-1"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Live-Hack-CVE/CVE-2014-0160 "
          },
          {
            "title": "exploits",
            "trust": 0.1,
            "url": "https://github.com/vs4vijay/exploits "
          },
          {
            "title": "VULNIX",
            "trust": 0.1,
            "url": "https://github.com/El-Palomo/VULNIX "
          },
          {
            "title": "openssl-heartbleed-fix",
            "trust": 0.1,
            "url": "https://github.com/sammyfung/openssl-heartbleed-fix "
          },
          {
            "title": "cve-2014-0160",
            "trust": 0.1,
            "url": "https://github.com/cved-sources/cve-2014-0160 "
          },
          {
            "title": "heartbleed_check",
            "trust": 0.1,
            "url": "https://github.com/ehoffmann-cp/heartbleed_check "
          },
          {
            "title": "heartbleed",
            "trust": 0.1,
            "url": "https://github.com/okrutnik420/heartbleed "
          },
          {
            "title": "heartbleed-test.crx",
            "trust": 0.1,
            "url": "https://github.com/iwaffles/heartbleed-test.crx "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Maheshmaske111/te "
          },
          {
            "title": "AradSocket",
            "trust": 0.1,
            "url": "https://github.com/araditc/AradSocket "
          },
          {
            "title": "sslscan",
            "trust": 0.1,
            "url": "https://github.com/kaisenlinux/sslscan "
          },
          {
            "title": "Springboard_Capstone_Project",
            "trust": 0.1,
            "url": "https://github.com/jonahwinninghoff/Springboard_Capstone_Project "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/MrE-Fog/heartbleeder "
          },
          {
            "title": "buffer_overflow_exploit",
            "trust": 0.1,
            "url": "https://github.com/olivamadrigal/buffer_overflow_exploit "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/ashrafulislamcs/Ubuntu-Server-Hardening "
          },
          {
            "title": "insecure_project",
            "trust": 0.1,
            "url": "https://github.com/turtlesec-no/insecure_project "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Maheshmaske111/ssl "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/H4R335HR/heartbleed "
          },
          {
            "title": "nmap-scripts",
            "trust": 0.1,
            "url": "https://github.com/takeshixx/nmap-scripts "
          },
          {
            "title": "knockbleed",
            "trust": 0.1,
            "url": "https://github.com/siddolo/knockbleed "
          },
          {
            "title": "heartbleed-masstest",
            "trust": 0.1,
            "url": "https://github.com/musalbas/heartbleed-masstest "
          },
          {
            "title": "HeartBleedDotNet",
            "trust": 0.1,
            "url": "https://github.com/ShawInnes/HeartBleedDotNet "
          },
          {
            "title": "heartbleed_test_openvpn",
            "trust": 0.1,
            "url": "https://github.com/weisslj/heartbleed_test_openvpn "
          },
          {
            "title": "paraffin",
            "trust": 0.1,
            "url": "https://github.com/vmeurisse/paraffin "
          },
          {
            "title": "sslscan",
            "trust": 0.1,
            "url": "https://github.com/rbsec/sslscan "
          },
          {
            "title": "Heartbleed_Dockerfile_with_Nginx",
            "trust": 0.1,
            "url": "https://github.com/froyo75/Heartbleed_Dockerfile_with_Nginx "
          },
          {
            "title": "heartbleed-bug",
            "trust": 0.1,
            "url": "https://github.com/cldme/heartbleed-bug "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/H4CK3RT3CH/awesome-web-hacking "
          },
          {
            "title": "Web-Hacking",
            "trust": 0.1,
            "url": "https://github.com/adm0i/Web-Hacking "
          },
          {
            "title": "cybersecurity-ethical-hacking",
            "trust": 0.1,
            "url": "https://github.com/paulveillard/cybersecurity-ethical-hacking "
          },
          {
            "title": "Lastest-Web-Hacking-Tools-vol-I",
            "trust": 0.1,
            "url": "https://github.com/SARATOGAMarine/Lastest-Web-Hacking-Tools-vol-I "
          },
          {
            "title": "HTBValentineWriteup",
            "trust": 0.1,
            "url": "https://github.com/zimmel15/HTBValentineWriteup "
          },
          {
            "title": "heartbleed-poc",
            "trust": 0.1,
            "url": "https://github.com/sensepost/heartbleed-poc "
          },
          {
            "title": "CVE-2014-0160",
            "trust": 0.1,
            "url": "https://github.com/0x90/CVE-2014-0160 "
          },
          {
            "title": "Certified-Ethical-Hacker-Exam-CEH-v10",
            "trust": 0.1,
            "url": "https://github.com/Tung0801/Certified-Ethical-Hacker-Exam-CEH-v10 "
          },
          {
            "title": "cs558heartbleed",
            "trust": 0.1,
            "url": "https://github.com/gkaptch1/cs558heartbleed "
          },
          {
            "title": "HeartBleed",
            "trust": 0.1,
            "url": "https://github.com/archaic-magnon/HeartBleed "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/undacmic/heartbleed-proof-of-concept "
          },
          {
            "title": "openvpn-jookk",
            "trust": 0.1,
            "url": "https://github.com/Jeypi04/openvpn-jookk "
          },
          {
            "title": "Heartbleed",
            "trust": 0.1,
            "url": "https://github.com/Saiprasad16/Heartbleed "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/KickFootCode/LoveYouALL "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/imesecan/LeakReducer-artifacts "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/TVernet/Kali-Tools-liste-et-description "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/k4u5h41/Heartbleed "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/ronaldogdm/Heartbleed "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/rochacbruno/my-awesome-stars "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/asadhasan73/temp_comp_sec "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Aakaashzz/Heartbleed "
          },
          {
            "title": "tls-channel",
            "trust": 0.1,
            "url": "https://github.com/marianobarrios/tls-channel "
          },
          {
            "title": "fuzzx_cpp_demo",
            "trust": 0.1,
            "url": "https://github.com/guardstrikelab/fuzzx_cpp_demo "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Ppamo/recon_net_tools "
          },
          {
            "title": "heatbleeding",
            "trust": 0.1,
            "url": "https://github.com/idkqh7/heatbleeding "
          },
          {
            "title": "HeartBleed-Vulnerability-Checker",
            "trust": 0.1,
            "url": "https://github.com/waqasjamal/HeartBleed-Vulnerability-Checker "
          },
          {
            "title": "heartbleed",
            "trust": 0.1,
            "url": "https://github.com/iSCInc/heartbleed "
          },
          {
            "title": "heartbleed-dtls",
            "trust": 0.1,
            "url": "https://github.com/hreese/heartbleed-dtls "
          },
          {
            "title": "heartbleedchecker",
            "trust": 0.1,
            "url": "https://github.com/roganartu/heartbleedchecker "
          },
          {
            "title": "nmap-heartbleed",
            "trust": 0.1,
            "url": "https://github.com/azet/nmap-heartbleed "
          },
          {
            "title": "sslscan",
            "trust": 0.1,
            "url": "https://github.com/delishen/sslscan "
          },
          {
            "title": "web-hacking",
            "trust": 0.1,
            "url": "https://github.com/hr-beast/web-hacking "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Miss-Brain/Web-Application-Security "
          },
          {
            "title": "web-hacking",
            "trust": 0.1,
            "url": "https://github.com/Hemanthraju02/web-hacking "
          },
          {
            "title": "awesome-web-hacking",
            "trust": 0.1,
            "url": "https://github.com/QWERTSKIHACK/awesome-web-hacking "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/himera25/web-hacking-list "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/dorota-fiit/bp-Heartbleed-defense-game "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Maheshmaske111/sslscan "
          },
          {
            "title": "Heart-bleed",
            "trust": 0.1,
            "url": "https://github.com/anonymouse327311/Heart-bleed "
          },
          {
            "title": "goScan",
            "trust": 0.1,
            "url": "https://github.com/stackviolator/goScan "
          },
          {
            "title": "sec-tool-list",
            "trust": 0.1,
            "url": "https://github.com/alphaSeclab/sec-tool-list "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/utensil/awesome-stars-test "
          },
          {
            "title": "insecure-cplusplus-dojo",
            "trust": 0.1,
            "url": "https://github.com/patricia-gallardo/insecure-cplusplus-dojo "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/jubalh/awesome-package-maintainer "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Elnatty/tryhackme_labs "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/hzuiw33/OpenSSL "
          },
          {
            "title": "makeItBleed",
            "trust": 0.1,
            "url": "https://github.com/mcampa/makeItBleed "
          },
          {
            "title": "CVE-2014-0160-Chrome-Plugin",
            "trust": 0.1,
            "url": "https://github.com/Xyl2k/CVE-2014-0160-Chrome-Plugin "
          },
          {
            "title": "heartbleedfixer.com",
            "trust": 0.1,
            "url": "https://github.com/reenhanced/heartbleedfixer.com "
          },
          {
            "title": "CVE-2014-0160-Scanner",
            "trust": 0.1,
            "url": "https://github.com/obayesshelton/CVE-2014-0160-Scanner "
          },
          {
            "title": "openmagic",
            "trust": 0.1,
            "url": "https://github.com/isgroup-srl/openmagic "
          },
          {
            "title": "heartbleeder",
            "trust": 0.1,
            "url": "https://github.com/titanous/heartbleeder "
          },
          {
            "title": "cardiac-arrest",
            "trust": 0.1,
            "url": "https://github.com/ah8r/cardiac-arrest "
          },
          {
            "title": "heartbleed_openvpn_poc",
            "trust": 0.1,
            "url": "https://github.com/tam7t/heartbleed_openvpn_poc "
          },
          {
            "title": "docker-wheezy-with-heartbleed",
            "trust": 0.1,
            "url": "https://github.com/simonswine/docker-wheezy-with-heartbleed "
          },
          {
            "title": "docker-testssl",
            "trust": 0.1,
            "url": "https://github.com/mbentley/docker-testssl "
          },
          {
            "title": "heartbleedscanner",
            "trust": 0.1,
            "url": "https://github.com/hybridus/heartbleedscanner "
          },
          {
            "title": "HeartLeak",
            "trust": 0.1,
            "url": "https://github.com/OffensivePython/HeartLeak "
          },
          {
            "title": "HBL",
            "trust": 0.1,
            "url": "https://github.com/ssc-oscar/HBL "
          },
          {
            "title": "awesome-stars",
            "trust": 0.1,
            "url": "https://github.com/utensil/awesome-stars "
          },
          {
            "title": "SecurityTesting_web-hacking",
            "trust": 0.1,
            "url": "https://github.com/mostakimur/SecurityTesting_web-hacking "
          },
          {
            "title": "awesome-web-hacking",
            "trust": 0.1,
            "url": "https://github.com/winterwolf32/awesome-web-hacking "
          },
          {
            "title": "awesome-web-hacking-1",
            "trust": 0.1,
            "url": "https://github.com/winterwolf32/awesome-web-hacking-1 "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Mehedi-Babu/ethical_hacking_cyber "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/drakyanerlanggarizkiwardhana/awesome-web-hacking "
          },
          {
            "title": "awesome-web-hacking",
            "trust": 0.1,
            "url": "https://github.com/thanshurc/awesome-web-hacking "
          },
          {
            "title": "hack",
            "trust": 0.1,
            "url": "https://github.com/nvnpsplt/hack "
          },
          {
            "title": "awesome-web-hacking",
            "trust": 0.1,
            "url": "https://github.com/noname1007/awesome-web-hacking "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/ImranTheThirdEye/awesome-web-hacking "
          },
          {
            "title": "web-hacking",
            "trust": 0.1,
            "url": "https://github.com/Ondrik8/web-hacking "
          },
          {
            "title": "CheckSSL-ciphersuite",
            "trust": 0.1,
            "url": "https://github.com/kal1gh0st/CheckSSL-ciphersuite "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/undacmic/HeartBleed-Demo "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/MrE-Fog/ssl-heartbleed.nse "
          },
          {
            "title": "welivesecurity",
            "trust": 0.1,
            "url": "https://www.welivesecurity.com/2015/08/03/worlds-biggest-bug-bounty-payouts/"
          },
          {
            "title": "Threatpost",
            "trust": 0.1,
            "url": "https://threatpost.com/oracle-gives-heartbleed-update-patches-14-products/105576/"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-125",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.7,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0376.html"
          },
          {
            "trust": 1.9,
            "url": "http://heartbleed.com/"
          },
          {
            "trust": 1.9,
            "url": "http://blog.fox-it.com/2014/04/08/openssl-heartbleed-bug-live-blog/"
          },
          {
            "trust": 1.9,
            "url": "https://www.cert.fi/en/reports/2014/vulnerability788210.html"
          },
          {
            "trust": 1.9,
            "url": "https://code.google.com/p/mod-spdy/issues/detail?id=85"
          },
          {
            "trust": 1.9,
            "url": "https://blog.torproject.org/blog/openssl-bug-cve-2014-0160"
          },
          {
            "trust": 1.9,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140409-heartbleed"
          },
          {
            "trust": 1.9,
            "url": "http://www.debian.org/security/2014/dsa-2896"
          },
          {
            "trust": 1.9,
            "url": "https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html?sr=36517217"
          },
          {
            "trust": 1.9,
            "url": "http://www.oracle.com/technetwork/topics/security/opensslheartbleedcve-2014-0160-2188454.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/"
          },
          {
            "trust": 1.7,
            "url": "http://www.getchef.com/blog/2014/04/09/chef-server-heartbleed-cve-2014-0160-releases/"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0160"
          },
          {
            "trust": 1.2,
            "url": "http://www.ubuntu.com/usn/usn-2165-1"
          },
          {
            "trust": 1.1,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1084875"
          },
          {
            "trust": 1.1,
            "url": "http://www.openssl.org/news/secadv_20140407.txt"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030078"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/apr/109"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/apr/190"
          },
          {
            "trust": 1.1,
            "url": "https://lists.balabit.hu/pipermail/syslog-ng-announce/2014-april/000184.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0396.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030082"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57347"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139722163017074\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030077"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21670161"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0377.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030080"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-april/131221.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030074"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/apr/90"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030081"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0378.html"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/apr/91"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57483"
          },
          {
            "trust": 1.1,
            "url": "http://www.splunk.com/view/sp-caaamb3"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-april/131291.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030079"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00004.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57721"
          },
          {
            "trust": 1.1,
            "url": "http://www.blackberry.com/btsc/kb35882"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030026"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00005.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/66690"
          },
          {
            "trust": 1.1,
            "url": "http://www.getchef.com/blog/2014/04/09/chef-server-11-0-12-release/"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/ncas/alerts/ta14-098a"
          },
          {
            "trust": 1.1,
            "url": "http://www.getchef.com/blog/2014/04/09/enterprise-chef-1-4-9-release/"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57966"
          },
          {
            "trust": 1.1,
            "url": "http://www.f-secure.com/en/web/labs_global/fsc-2014-1"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/apr/173"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57968"
          },
          {
            "trust": 1.1,
            "url": "http://www.exploit-db.com/exploits/32745"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/720951"
          },
          {
            "trust": 1.1,
            "url": "http://www.exploit-db.com/exploits/32764"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57836"
          },
          {
            "trust": 1.1,
            "url": "https://gist.github.com/chapmajs/10473815"
          },
          {
            "trust": 1.1,
            "url": "http://cogentdatahub.com/releasenotes.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905458328378\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139869891830365\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139889113431619\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://public.support.unisys.com/common/public/vulnerability/nvd_detail_rpt.aspx?id=1"
          },
          {
            "trust": 1.1,
            "url": "http://www.kerio.com/support/kerio-control/release-history"
          },
          {
            "trust": 1.1,
            "url": "http://public.support.unisys.com/common/public/vulnerability/nvd_detail_rpt.aspx?id=3"
          },
          {
            "trust": 1.1,
            "url": "http://advisories.mageia.org/mgasa-2014-0165.html"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hp.com/portal/site/hpsc/template.page/public/kb/docdisplay/?spf_p.tpst=kbdocdisplay\u0026spf_p.prp_kbdocdisplay=wsrp-navigationalstate%3ddocid%253demr_na-c04260637-4%257cdoclocale%253den_us%257ccalledby%253dsearch_result\u0026javax.portlet.begcachetok=com.vignette.cachetoken\u0026javax.portlet.endcachetok=com.vignette.cachetoken"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843"
          },
          {
            "trust": 1.1,
            "url": "https://filezilla-project.org/versions.php?type=server"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141287864628122\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/dec/23"
          },
          {
            "trust": 1.1,
            "url": "http://www.vmware.com/security/advisories/vmsa-2014-0012.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.websense.com/support/article/kbarticle/vulnerabilities-resolved-in-triton-apx-version-8-0"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:062"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139817727317190\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139757726426985\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139758572430452\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905653828999\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139842151128341\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905405728262\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139833395230364\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139824993005633\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139843768401936\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905202427693\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139774054614965\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139889295732144\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139835815211508\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=140724451518351\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139808058921905\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139836085512508\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139869720529462\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905868529690\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139765756720506\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=140015787404650\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139824923705461\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139757919027752\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139774703817488\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905243827825\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=140075368411126\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905295427946\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139835844111589\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139757819327350\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139817685517037\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139905351928096\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=139817782017443\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=140752315422991\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20160512_00"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004661"
          },
          {
            "trust": 1.1,
            "url": "http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_release_notes.pdf"
          },
          {
            "trust": 1.1,
            "url": "http://www.apcmedia.com/salestools/sjhn-7rkgnm/sjhn-7rkgnm_r4_en.pdf"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59347"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59243"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59139"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-august/136473.html"
          },
          {
            "trust": 1.1,
            "url": "http://download.schneider-electric.com/files?p_doc_ref=sevd%202014-119-01"
          },
          {
            "trust": 1.1,
            "url": "https://support.f5.com/kb/en-us/solutions/public/15000/100/sol15159.html"
          },
          {
            "trust": 1.1,
            "url": "http://support.citrix.com/article/ctx140605"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-updates/2014-04/msg00061.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008"
          },
          {
            "trust": 1.1,
            "url": "https://sku11army.blogspot.com/2020/01/heartbleed-hearts-continue-to-bleed.html"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-635659.pdf"
          },
          {
            "trust": 1.1,
            "url": "https://yunus-shn.medium.com/ricon-industrial-cellular-router-heartbleed-attack-2634221c02bd"
          },
          {
            "trust": 1.1,
            "url": "http://git.openssl.org/gitweb/?p=openssl.git%3ba=commit%3bh=96db9023b881d7cd9f379b0c154650d6c108e9a3"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3cdev.tomcat.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/f8e0814e11c7f21f42224b6de111cb3f5e5ab5c15b78924c516d4ec2%40%3cdev.tomcat.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3cdev.tomcat.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/re3b72cbb13e1dfe85c4a06959a3b6ca6d939b407ecca80db12b54220%40%3cdev.tomcat.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 1.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 1.1,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 1.0,
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=cve-2014-0160"
          },
          {
            "trust": 0.8,
            "url": "http://seclists.org/oss-sec/2014/q2/22"
          },
          {
            "trust": 0.8,
            "url": "http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=96db902"
          },
          {
            "trust": 0.8,
            "url": "https://tools.ietf.org/html/rfc6520"
          },
          {
            "trust": 0.8,
            "url": "http://www.openssl.org/news/openssl-1.0.1-notes.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.hut3.net/blog/cns---networks-security/2014/04/14/bugs-in-heartbleed-detection-scripts-"
          },
          {
            "trust": 0.8,
            "url": "http://blog.cryptographyengineering.com/2014/04/attack-of-week-openssl-heartbleed.html"
          },
          {
            "trust": 0.8,
            "url": "http://xkcd.com/1354/"
          },
          {
            "trust": 0.8,
            "url": "http://www.exploit-db.com/exploits/32745/"
          },
          {
            "trust": 0.8,
            "url": "https://access.redhat.com/security/cve/cve-2014-0160 "
          },
          {
            "trust": 0.8,
            "url": "http://www.ubuntu.com/usn/usn-2165-1/"
          },
          {
            "trust": 0.8,
            "url": "http://www.freshports.org/security/openssl/"
          },
          {
            "trust": 0.8,
            "url": "http://kb.bluecoat.com/index?page=content\u0026id=sa79"
          },
          {
            "trust": 0.8,
            "url": "https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentid="
          },
          {
            "trust": 0.8,
            "url": "http://learn.extremenetworks.com/rs/extreme/images/cert_vu%23720951_vulnerability_advisory_04_11_2014v2.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://www.fortiguard.com/advisory/fg-ir-14-011/"
          },
          {
            "trust": 0.8,
            "url": "http://www.freebsd.org/security/advisories/freebsd-sa-14:06.openssl.asc"
          },
          {
            "trust": 0.8,
            "url": "http://www.gentoo.org/security/en/glsa/glsa-201404-07.xml"
          },
          {
            "trust": 0.8,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04239375"
          },
          {
            "trust": 0.8,
            "url": "http://www.hitachi.com/hirt/publications/hirt-pub14005/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://www-01.ibm.com/support/docview.wss?\u0026uid=swg21669774"
          },
          {
            "trust": 0.8,
            "url": "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00037\u0026languageid=en-fr"
          },
          {
            "trust": 0.8,
            "url": "https://kb.juniper.net/jsa10623"
          },
          {
            "trust": 0.8,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10071"
          },
          {
            "trust": 0.8,
            "url": "http://mail-index.netbsd.org/security-announce/2014/04/08/msg000085.html"
          },
          {
            "trust": 0.8,
            "url": "http://ftp.openbsd.org/pub/openbsd/patches/5.3/common/014_openssl.patch"
          },
          {
            "trust": 0.8,
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2014\u0026m=slackware-security.533622"
          },
          {
            "trust": 0.8,
            "url": "http://kb.vmware.com/kb/2076225"
          },
          {
            "trust": 0.8,
            "url": "https://support.windriver.com/"
          },
          {
            "trust": 0.8,
            "url": "http://blogs.technet.com/b/security/archive/2014/04/10/microsoft-devices-and-services-and-the-openssl-heartbleed-vulnerability.aspx"
          },
          {
            "trust": 0.8,
            "url": "https://forum.peplink.com/threads/3062-special-notice-on-openssl-heartbleed-vulnerability"
          },
          {
            "trust": 0.8,
            "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventsubmit_dogoviewsolutiondetails=\u0026solutionid=sk100173"
          },
          {
            "trust": 0.8,
            "url": "http://jpn.nec.com/security-info/av14-001.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.suse.com/support/update/announcement/2014/suse-su-20140734-1.html"
          },
          {
            "trust": 0.3,
            "url": "rubygems.org/gems/actionpack"
          },
          {
            "trust": 0.3,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1036483"
          },
          {
            "trust": 0.3,
            "url": "http://puppetlabs.com/security/cve/cve-2013-6414"
          },
          {
            "trust": 0.3,
            "url": "http://rubygems.org/"
          },
          {
            "trust": 0.3,
            "url": "https://rhn.redhat.com/errata/rhsa-2014-0008.html"
          },
          {
            "trust": 0.3,
            "url": "https://rhn.redhat.com/errata/rhsa-2013-1794.html"
          },
          {
            "trust": 0.3,
            "url": "http://puppetlabs.com/security/cve/cve-2014-0082"
          },
          {
            "trust": 0.3,
            "url": "http://weblog.rubyonrails.org/2014/2/18/rails_3_2_17_4_0_3_and_4_1_0_beta2_have_been_released/"
          },
          {
            "trust": 0.3,
            "url": "http://rubyonrails.org/"
          },
          {
            "trust": 0.3,
            "url": "https://rhn.redhat.com/errata/rhsa-2014-0306.html"
          },
          {
            "trust": 0.3,
            "url": "https://rhn.redhat.com/errata/rhsa-2014-0215.html"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-4353"
          },
          {
            "trust": 0.2,
            "url": "http://www.hp.com/swpublishing/mtx-d1488fd987894bc4ab3fe0ef52"
          },
          {
            "trust": 0.2,
            "url": "http://www.hp.com/swpublishing/mtx-4575754bbb614b58bf0ae1ac37"
          },
          {
            "trust": 0.2,
            "url": "http://www.hp.com/swpublishing/mtx-bfd3c0fb11184796b9428ced37"
          },
          {
            "trust": 0.2,
            "url": "http://support.openview.hp.com/downloads.jsp"
          },
          {
            "trust": 0.2,
            "url": "http://www8.h"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0076"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/125.html"
          },
          {
            "trust": 0.1,
            "url": "http://seclists.org/fulldisclosure/2019/jan/42"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/./dsa-2896"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://threatpost.com/oracle-gives-heartbleed-update-patches-14-products/105576/"
          },
          {
            "trust": 0.1,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-14-135-02"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2165-1/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-6450"
          },
          {
            "trust": 0.1,
            "url": "http://h17007.www1.hp.com/us/en/enterprise/servers/solutions/info-library"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-6449"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-3d92ccccf85f404e8ba36a8178"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-37075daeead2433cb41b59ae76"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-27e03b2f9cd24e77adc9dba94a"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_n"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/go/insightupdates"
          },
          {
            "trust": 0.1,
            "url": "http://h20565.www2.hp.com/portal/site/hpsc/template.page/public/psi/swddetail"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4929"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-0160.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-0169"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2013-4353.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/#package"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/site/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.1,
            "url": "https://rhn.redhat.com/errata/rhsa-2014-0416.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2013-0169.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-4929.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-41199f68c1144acb84a5798bf0"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-2e19c856f0e84e20a14c63ecd0"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lrvug_00092"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lrlg_00051"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/pc_00299"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lranlsys_00074"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03305"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03329"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/pc_00296"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03307"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lrlg_00052"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03315"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03306"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lranlsys_00075"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03328"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03332"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lrvug_00094"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03316"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03304"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/lr_03333"
          },
          {
            "trust": 0.1,
            "url": "http://h18013.www1.hp.com/products/servers/management/agents/index.html"
          },
          {
            "trust": 0.1,
            "url": "http://eprint.iacr.org/2014/140"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0160"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0076"
          },
          {
            "trust": 0.1,
            "url": "http://osuosl.org)"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/gpg-key"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssl/1.0.1-4ubuntu5.12"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssl/1.0.1e-3ubuntu1.2"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssl/1.0.1c-3ubuntu2.7"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/support/eslg3"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-9c71e9ff82af4d1fbdea666d97"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-ade2403c9999459aa758e16d46"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-16533b4917c84c8c81b703f354"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-06eee9db0f4a40d98d8cb32421"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/p"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160"
          },
          {
            "db": "BID",
            "id": "64074"
          },
          {
            "db": "BID",
            "id": "65604"
          },
          {
            "db": "PACKETSTORM",
            "id": "126605"
          },
          {
            "db": "PACKETSTORM",
            "id": "126954"
          },
          {
            "db": "PACKETSTORM",
            "id": "126284"
          },
          {
            "db": "PACKETSTORM",
            "id": "126361"
          },
          {
            "db": "PACKETSTORM",
            "id": "126197"
          },
          {
            "db": "PACKETSTORM",
            "id": "126417"
          },
          {
            "db": "PACKETSTORM",
            "id": "126305"
          },
          {
            "db": "PACKETSTORM",
            "id": "126644"
          },
          {
            "db": "PACKETSTORM",
            "id": "126164"
          },
          {
            "db": "PACKETSTORM",
            "id": "126086"
          },
          {
            "db": "PACKETSTORM",
            "id": "126045"
          },
          {
            "db": "PACKETSTORM",
            "id": "127279"
          },
          {
            "db": "PACKETSTORM",
            "id": "127085"
          },
          {
            "db": "PACKETSTORM",
            "id": "126784"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0160"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#720951",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0160",
            "ident": null
          },
          {
            "db": "BID",
            "id": "64074",
            "ident": null
          },
          {
            "db": "BID",
            "id": "65604",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126605",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126954",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126284",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126361",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126197",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126417",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126305",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126644",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126164",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126086",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126045",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127279",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127085",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126784",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0160",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-04-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#720951",
            "ident": null
          },
          {
            "date": "2014-04-07T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-0160",
            "ident": null
          },
          {
            "date": "2013-12-02T00:00:00",
            "db": "BID",
            "id": "64074",
            "ident": null
          },
          {
            "date": "2014-02-18T00:00:00",
            "db": "BID",
            "id": "65604",
            "ident": null
          },
          {
            "date": "2014-05-13T18:24:00",
            "db": "PACKETSTORM",
            "id": "126605",
            "ident": null
          },
          {
            "date": "2014-06-05T21:02:31",
            "db": "PACKETSTORM",
            "id": "126954",
            "ident": null
          },
          {
            "date": "2014-04-23T21:25:00",
            "db": "PACKETSTORM",
            "id": "126284",
            "ident": null
          },
          {
            "date": "2014-04-28T20:36:00",
            "db": "PACKETSTORM",
            "id": "126361",
            "ident": null
          },
          {
            "date": "2014-04-17T22:02:09",
            "db": "PACKETSTORM",
            "id": "126197",
            "ident": null
          },
          {
            "date": "2014-05-01T02:16:33",
            "db": "PACKETSTORM",
            "id": "126417",
            "ident": null
          },
          {
            "date": "2014-04-24T22:21:23",
            "db": "PACKETSTORM",
            "id": "126305",
            "ident": null
          },
          {
            "date": "2014-05-16T04:40:57",
            "db": "PACKETSTORM",
            "id": "126644",
            "ident": null
          },
          {
            "date": "2014-04-15T23:01:44",
            "db": "PACKETSTORM",
            "id": "126164",
            "ident": null
          },
          {
            "date": "2014-04-09T22:48:55",
            "db": "PACKETSTORM",
            "id": "126086",
            "ident": null
          },
          {
            "date": "2014-04-07T22:44:13",
            "db": "PACKETSTORM",
            "id": "126045",
            "ident": null
          },
          {
            "date": "2014-06-30T23:47:20",
            "db": "PACKETSTORM",
            "id": "127279",
            "ident": null
          },
          {
            "date": "2014-06-13T13:31:03",
            "db": "PACKETSTORM",
            "id": "127085",
            "ident": null
          },
          {
            "date": "2014-05-23T13:13:00",
            "db": "PACKETSTORM",
            "id": "126784",
            "ident": null
          },
          {
            "date": "2014-04-07T22:55:03.893000",
            "db": "NVD",
            "id": "CVE-2014-0160",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-05-13T00:00:00",
            "db": "CERT/CC",
            "id": "VU#720951",
            "ident": null
          },
          {
            "date": "2023-11-07T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-0160",
            "ident": null
          },
          {
            "date": "2015-04-13T21:20:00",
            "db": "BID",
            "id": "64074",
            "ident": null
          },
          {
            "date": "2015-04-13T21:44:00",
            "db": "BID",
            "id": "65604",
            "ident": null
          },
          {
            "date": "2025-10-22T01:15:53.233000",
            "db": "NVD",
            "id": "CVE-2014-0160",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "64074"
          },
          {
            "db": "BID",
            "id": "65604"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "OpenSSL TLS heartbeat extension read overflow discloses sensitive information",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#720951"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Failure to Handle Exceptional Conditions",
        "sources": [
          {
            "db": "BID",
            "id": "64074"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201410-1418

    Vulnerability from variot - Updated: 2026-04-10 23:34

    The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. OpenSSL is prone to an information disclosure vulnerability. An attacker can exploit this issue to perform man-in-the-middle attacks and obtain sensitive information. Successful exploits will lead to other attacks. The following versions are vulnerable: OpenSSL 0.9.8 prior to 0.9.8zc OpenSSL 1.0.0 prior to 1.0.0o OpenSSL 1.0.1 prior to 1.0.1j. SSL protocol is the abbreviation of Secure Socket Layer protocol (Secure Socket Layer) developed by Netscape, which provides security and data integrity guarantee for Internet communication. The vulnerability is caused by the program's use of non-deterministic CBC padding. OpenSSL Security Advisory [15 Oct 2014] =======================================

    SRTP Memory Leak (CVE-2014-3513)

    Severity: High

    A flaw in the DTLS SRTP extension parsing code allows an attacker, who sends a carefully crafted handshake message, to cause OpenSSL to fail to free up to 64k of memory causing a memory leak. This could be exploited in a Denial Of Service attack. This issue affects OpenSSL 1.0.1 server implementations for both SSL/TLS and DTLS regardless of whether SRTP is used or configured. Implementations of OpenSSL that have been compiled with OPENSSL_NO_SRTP defined are not affected.

    This issue was reported to OpenSSL on 26th September 2014, based on an original issue and patch developed by the LibreSSL project. Further analysis of the issue was performed by the OpenSSL team.

    The fix was developed by the OpenSSL team.

    Session Ticket Memory Leak (CVE-2014-3567)

    Severity: Medium

    When an OpenSSL SSL/TLS/DTLS server receives a session ticket the integrity of that ticket is first verified. In the event of a session ticket integrity check failing, OpenSSL will fail to free memory causing a memory leak. By sending a large number of invalid session tickets an attacker could exploit this issue in a Denial Of Service attack.

    This issue was reported to OpenSSL on 8th October 2014.

    The fix was developed by Stephen Henson of the OpenSSL core team.

    SSL 3.0 Fallback protection

    Severity: Medium

    OpenSSL has added support for TLS_FALLBACK_SCSV to allow applications to block the ability for a MITM attacker to force a protocol downgrade.

    Some client applications (such as browsers) will reconnect using a downgraded protocol to work around interoperability bugs in older servers. This could be exploited by an active man-in-the-middle to downgrade connections to SSL 3.0 even if both sides of the connection support higher protocols. SSL 3.0 contains a number of weaknesses including POODLE (CVE-2014-3566).

    https://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv-00 https://www.openssl.org/~bodo/ssl-poodle.pdf

    Support for TLS_FALLBACK_SCSV was developed by Adam Langley and Bodo Moeller.

    Build option no-ssl3 is incomplete (CVE-2014-3568)

    Severity: Low

    When OpenSSL is configured with "no-ssl3" as a build option, servers could accept and complete a SSL 3.0 handshake, and clients could be configured to send them.

    This issue was reported to OpenSSL by Akamai Technologies on 14th October 2014.

    The fix was developed by Akamai and the OpenSSL team.

    References

    URL for this Security Advisory: https://www.openssl.org/news/secadv_20141015.txt

    Note: the online version of the advisory may be updated with additional details over time.

    For details of OpenSSL severity classifications please see: https://www.openssl.org/about/secpolicy.html

    . The following firmware versions of Virtual Connect (VC) are impacted:

    HPE BladeSystem c-Class Virtual Connect (VC) Firmware 4.30 through VC 4.45 HPE BladeSystem c-Class Virtual Connect (VC) Firmware 3.62 through VC 4.21

    Note: Firmware versions 3.62 through 4.21 are not impacted by CVE-2016-0800, CVE-2015-3194, CVE-2014-3566, CVE-2015-0705, CVE-2016-0799, and CVE-2016-2842. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201507-14


                                           https://security.gentoo.org/
    

    Severity: Normal Title: Oracle JRE/JDK: Multiple vulnerabilities Date: July 10, 2015 Bugs: #537214 ID: 201507-14


    Synopsis

    Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components. Please review the CVE identifiers referenced below for details.

    Impact

    An context-dependent attacker may be able to influence the confidentiality, integrity, and availability of Java applications/runtime.

    Workaround

    There is no workaround at this time.

    Resolution

    All Oracle JRE 8 users should upgrade to the latest stable version:

    emerge --sync

    emerge --ask --oneshot --verbose ">=dev-java/oracle-jre-bin-1.8.0.31

    All Oracle JDK 8 users should upgrade to the latest stable version:

    emerge --sync

    emerge --ask --oneshot --verbose ">=dev-java/oracle-jdk-bin-1.8.0.31

    All Oracle JRE 7 users should upgrade to the latest version:

    emerge --sync

    emerge --ask --oneshot --verbose ">=dev-java/oracle-jre-bin-1.7.0.76

    All Oracle JDK 7 users should upgrade to the latest stable version:

    emerge --sync

    emerge --ask --oneshot --verbose ">=dev-java/oracle-jdk-bin-1.7.0.76

    References

    [ 1 ] CVE-2014-3566 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3566 [ 2 ] CVE-2014-6549 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6549 [ 3 ] CVE-2014-6585 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6585 [ 4 ] CVE-2014-6587 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6587 [ 5 ] CVE-2014-6591 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6591 [ 6 ] CVE-2014-6593 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6593 [ 7 ] CVE-2014-6601 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6601 [ 8 ] CVE-2015-0383 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0383 [ 9 ] CVE-2015-0395 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0395 [ 10 ] CVE-2015-0400 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0400 [ 11 ] CVE-2015-0403 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0403 [ 12 ] CVE-2015-0406 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0406 [ 13 ] CVE-2015-0407 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0407 [ 14 ] CVE-2015-0408 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0408 [ 15 ] CVE-2015-0410 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0410 [ 16 ] CVE-2015-0412 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0412 [ 17 ] CVE-2015-0413 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0413 [ 18 ] CVE-2015-0421 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0421

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    https://security.gentoo.org/glsa/201507-14

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2015 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5 .

    HP CMS: UCMDB Browser all supported versions. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Critical: java-1.7.0-ibm security update Advisory ID: RHSA-2014:1876-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://rhn.redhat.com/errata/RHSA-2014-1876.html Issue date: 2014-11-19 CVE Names: CVE-2014-3065 CVE-2014-3566 CVE-2014-4288 CVE-2014-6456 CVE-2014-6457 CVE-2014-6458 CVE-2014-6476 CVE-2014-6492 CVE-2014-6493 CVE-2014-6502 CVE-2014-6503 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6515 CVE-2014-6527 CVE-2014-6531 CVE-2014-6532 CVE-2014-6558 =====================================================================

    1. Summary:

    Updated java-1.7.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 Supplementary.

    Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, ppc, s390x, x86_64

    1. Description:

    IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.

    This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Detailed vulnerability descriptions are linked from the IBM Security alerts page, listed in the References section. (CVE-2014-3065, CVE-2014-3566, CVE-2014-4288, CVE-2014-6456, CVE-2014-6457, CVE-2014-6458, CVE-2014-6476, CVE-2014-6492, CVE-2014-6493, CVE-2014-6502, CVE-2014-6503, CVE-2014-6506, CVE-2014-6511, CVE-2014-6512, CVE-2014-6515, CVE-2014-6527, CVE-2014-6531, CVE-2014-6532, CVE-2014-6558)

    The CVE-2014-6512 issue was discovered by Florian Weimer of Red Hat Product Security.

    Note: With this update, the IBM SDK now disables the SSL 3.0 protocol to address the CVE-2014-3566 issue (also known as POODLE). Refer to the IBM article linked to in the References section for additional details about this change and instructions on how to re-enable SSL 3.0 support if needed.

    All users of java-1.7.0-ibm are advised to upgrade to these updated packages, containing the IBM Java SE 7 SR8 release. All running instances of IBM Java must be restarted for the update to take effect.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1071210 - CVE-2014-6512 OpenJDK: DatagramSocket connected socket missing source check (Libraries, 8039509) 1150155 - CVE-2014-6506 OpenJDK: insufficient permission checks when setting resource bundle on system logger (Libraries, 8041564) 1150651 - CVE-2014-6531 OpenJDK: insufficient ResourceBundle name check (Libraries, 8044274) 1150669 - CVE-2014-6502 OpenJDK: LogRecord use of incorrect CL when loading ResourceBundle (Libraries, 8042797) 1151046 - CVE-2014-6457 OpenJDK: Triple Handshake attack against TLS/SSL connections (JSSE, 8037066) 1151063 - CVE-2014-6558 OpenJDK: CipherInputStream incorrect exception handling (Security, 8037846) 1151517 - CVE-2014-6511 ICU: Layout Engine ContextualSubstitution missing boundary checks (JDK 2D, 8041540) 1152756 - CVE-2014-6532 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152757 - CVE-2014-6503 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152758 - CVE-2014-6456 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment) 1152759 - CVE-2014-6492 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152760 - CVE-2014-6493 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152761 - CVE-2014-4288 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152763 - CVE-2014-6458 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152765 - CVE-2014-6476 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment) 1152766 - CVE-2014-6515 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment) 1152767 - CVE-2014-6527 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment) 1152789 - CVE-2014-3566 SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack 1162554 - CVE-2014-3065 IBM JDK: privilege escalation via shared class cache

    1. Package List:

    Red Hat Enterprise Linux Desktop Supplementary (v. 5):

    i386: java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm

    x86_64: java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.x86_64.rpm

    Red Hat Enterprise Linux Server Supplementary (v. 5):

    i386: java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm

    ppc: java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.ppc.rpm java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.ppc64.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.ppc.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.ppc64.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.ppc.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.ppc64.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.ppc.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.ppc64.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.ppc.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.ppc.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.ppc64.rpm

    s390x: java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.s390.rpm java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.s390x.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.s390.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.s390x.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.s390.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.s390x.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.s390.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.s390x.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.s390.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.s390x.rpm

    x86_64: java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.x86_64.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm java-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2014-3065 https://access.redhat.com/security/cve/CVE-2014-3566 https://access.redhat.com/security/cve/CVE-2014-4288 https://access.redhat.com/security/cve/CVE-2014-6456 https://access.redhat.com/security/cve/CVE-2014-6457 https://access.redhat.com/security/cve/CVE-2014-6458 https://access.redhat.com/security/cve/CVE-2014-6476 https://access.redhat.com/security/cve/CVE-2014-6492 https://access.redhat.com/security/cve/CVE-2014-6493 https://access.redhat.com/security/cve/CVE-2014-6502 https://access.redhat.com/security/cve/CVE-2014-6503 https://access.redhat.com/security/cve/CVE-2014-6506 https://access.redhat.com/security/cve/CVE-2014-6511 https://access.redhat.com/security/cve/CVE-2014-6512 https://access.redhat.com/security/cve/CVE-2014-6515 https://access.redhat.com/security/cve/CVE-2014-6527 https://access.redhat.com/security/cve/CVE-2014-6531 https://access.redhat.com/security/cve/CVE-2014-6532 https://access.redhat.com/security/cve/CVE-2014-6558 https://access.redhat.com/security/updates/classification/#critical https://www.ibm.com/developerworks/java/jdk/alerts/ https://www-01.ibm.com/support/docview.wss?uid=swg21688165

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFUbOWGXlSAg2UNWIIRAhPmAJ96YO5JFEg4GS1MkDIeXQkRxbN0hACgoUiY ehbScogUJnSordhBH11LgWQ= =ko7F -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .

    ftp://ssl098zc:Secure12@ftp.usa.hp.com

    User name: ssl098zc Password: (NOTE: Case sensitive) Secure12

    HP-UX Release HP-UX OpenSSL version

    B.11.11 (11i v1) A.00.09.08zc.001_HP-UX_B.11.11_32+64.depot

    B.11.23 (11i v2) A.00.09.08zc.002_HP-UX_B.11.23_IA-PA.depot

    B.11.31 (11i v3) A.00.09.08zc.003_HP-UX_B.11.31_IA-PA.depot

    MANUAL ACTIONS: Yes - Update

    Install OpenSSL A.00.09.08zc or subsequent

    PRODUCT SPECIFIC INFORMATION

    HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa

    The following text is for use by the HP-UX Software Assistant.

    The update is available from HPE Software Depot: https://h20392.www2.hpe.com/ portal/swdepot/displayProductInfo.do?productNumber=HPVPRhttps://www.hpe.com

    Note: HPE recommends customers using OV4VC 7.8.1 and earlier should upgrade to OV4VC 7.8.2. This addresses all SSL security vulnerabilities reported through March 28, 2016. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04496538

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c04496538 Version: 1

    HPSBGN03164 rev.1 - HP IceWall SSO Dfw, SSO Certd and MCRP running OpenSSL, Remote Disclosure of Information

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2014-11-10 Last Updated: 2014-11-10

    Potential Security Impact: Remote disclosure of information

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP IceWall SSO Dfw , SSO Certd, and MCRP running OpenSSL.

    This is the SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" or "Poodle", which could be exploited remotely resulting in disclosure of information..

    References: CVE-2014-3566 (SSRT101789)

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.

    • HP IceWall MCRP v2.1, v3.0
    • HP IceWall SSO Dfw v8.0, v8.0 R1, v8.0 R2, v8.0 R3, and v10.0
    • HP IceWall SSO Certd v8.0R3 with DB plugin patch 2 and v10.0

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2014-3566 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP recommends the following software updates and workaround instructions to resolve this vulnerability for HP IceWall SSO Dfw, SSO Certd, and MCRP.

    The software updates are available at:

     http://www.hp.com/jp/icewall_patchaccess
    

    Notes:

    - There are no updates or mitigations for MCRP 2.1 and Dfw
    

    8.0/8.0R1/8.0R2/8.0R3. - HP recommends updating these older versions to the latest versions and patches and then following the WORKAROUND INSTRUCTIONS below. - The WORKAROUND INSTRUCTIONS should be followed after applying the following updates.

    Software Update Versions

    HP IceWall MCRP 3.0 Patch release 1
    
    HP IceWall SSO Dfw 10.0 Patch release 7
    

    Note: Both software update versions provide the use of TLSv1 which is not vulnerable and available for each supported platform.

    WORKAROUND INSTRUCTIONS

    HP recommends the following information to protect against potential risk for the following HP IceWall products.

    HP IceWall SSO Dfw and MCRP
    
      - If possible, do not use the SHOST setting which allows IceWall SSO
    

    Dfw or MCRP to use SSL/TLS protocol to back-end web servers.

      - The following steps should be applied if SSL/TLS protocol to back-end
    

    web servers must be used:

        o For MCRP: apply MCRP patch release 1
        o For Dfw: apply Dfw patch release 7 or later
        o Set SSL_PROTOCOL parameter to TLSv1
    
    HP IceWall SSO Certd
    
      - For Certd version 10.0 and 8.0R3: apply DB plugin patch release 2
    
      - If possible, do not use the LDAPSSL setting which allows IceWall SSO
    

    Certd to connect to the LDAP server using SSL/TLS protocol.

      - If SSL/TLS protocol must be used to LDAP server, configure the LDAP
    

    server to use only TLSv1 as a mitigation for the vulnerability. For example, on an OpenLDAP server (slapd), Set the TLSProtocolMin parameter.

    Note: The HP IceWall product is only available in Japan.

    HISTORY Version:1 (rev.1) - 10 November 2014 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2014 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

    HP SiteScope 11.1x HP SiteScope 11.2x

    Important note: HP SiteScope is impacted if and only if it is configured to work over secure channel (HTTPS). This protocol is now disabled by default.

    For the oldstable distribution (wheezy), this problem has been fixed in version 1.4.31-4+deb7u4.

    We recommend that you upgrade your lighttpd packages

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "suse linux enterprise software development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8u"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8o"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8w"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0d"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1f"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.9"
          },
          {
            "_id": null,
            "model": "suse linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0.5"
          },
          {
            "_id": null,
            "model": "enterprise linux server supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "suse linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8x"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "21"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8za"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0b"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "19"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0m"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8p"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.0"
          },
          {
            "_id": null,
            "model": "database",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.0.4"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.7"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8d"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1b"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0.4"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8z"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "apple",
            "version": "10.10.1"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "suse linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "suse linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8v"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.0.12"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1h"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.3"
          },
          {
            "_id": null,
            "model": "mageia",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mageia",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0j"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.2.5"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8zb"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1e"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.4"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8e"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.0.11"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0.3"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8q"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0f"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0n"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1i"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8f"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.0.10"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "suse linux enterprise software development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.5"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.2.3"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "suse linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8g"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8l"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0e"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.3.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8k"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8i"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.2.2"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0k"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8a"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1d"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.3.2"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0.6"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1c"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8r"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8t"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.2.4"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0g"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8m"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1g"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.0.13"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8n"
          },
          {
            "_id": null,
            "model": "enterprise linux server supplementary",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8j"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0h"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.1.4"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.3.4"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "suse linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8c"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0a"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.3.3"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "mageia",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mageia",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8b"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8s"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.2.0"
          },
          {
            "_id": null,
            "model": "database",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.1.0.2"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0l"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8h"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8y"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.6"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.3.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.1.8"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0c"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0i"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "20"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1a"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.2.2.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netbsd",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.17"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "windows vista service pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "20"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.12"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "fortigate",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "4.3.6"
          },
          {
            "_id": null,
            "model": "integrated lights out",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "21.16"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment 5.1.fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.8.780"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.7"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.11"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.1"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "project openssl k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.10"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1.1"
          },
          {
            "_id": null,
            "model": "phaser",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "78000"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.3"
          },
          {
            "_id": null,
            "model": "hat enterprise linux supplementary server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "5"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0.842"
          },
          {
            "_id": null,
            "model": "hat enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.4"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.5"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "ace appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "47100"
          },
          {
            "_id": null,
            "model": "aura system platform sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8w",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.8"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.15"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70000"
          },
          {
            "_id": null,
            "model": "wireless location appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "open source",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "asterisk",
            "version": "1.8.3.1"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8m",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.6"
          },
          {
            "_id": null,
            "model": "project openssl j",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "meeting exchange sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.37"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0.0.52"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.6"
          },
          {
            "_id": null,
            "model": "hat enterprise linux server supplementary",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3"
          },
          {
            "_id": null,
            "model": "tivoli directory server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "tivoli storage productivity center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.2"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "websphere process server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.4"
          },
          {
            "_id": null,
            "model": "commonstore for lotus domino",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.7"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8r",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8n",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.0.820"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.5"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "project openssl beta4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "rational policy tester",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "websphere lombardi edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "hat enterprise linux desktop optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.2"
          },
          {
            "_id": null,
            "model": "project openssl beta5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.23"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.13"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.6"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8p",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.15"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.1"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.1.830"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.31"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.14"
          },
          {
            "_id": null,
            "model": "web experience factory",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "network collector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "esxi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "networks sa2000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "hat enterprise linux server optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.9"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.13"
          },
          {
            "_id": null,
            "model": "directory pro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cosmicperl",
            "version": "10.0.3"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.15"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.7.770"
          },
          {
            "_id": null,
            "model": "meeting exchange sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.03"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.5.1"
          },
          {
            "_id": null,
            "model": "tivoli storage productivity center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.2.1.185"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8q",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.8"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "networks sa6500 fips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.800"
          },
          {
            "_id": null,
            "model": "ssl for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.4-453"
          },
          {
            "_id": null,
            "model": "windows server r2 for x64-based systems sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2008"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.5"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "cics transaction gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.17"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8v"
          },
          {
            "_id": null,
            "model": "websphere lombardi edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.7"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.1"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.27"
          },
          {
            "_id": null,
            "model": "hat enterprise linux desktop supplementary",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "windows server for x64-based systems sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2008"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.2"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.0.860"
          },
          {
            "_id": null,
            "model": "lotus domino",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.2"
          },
          {
            "_id": null,
            "model": "project openssl beta2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.13"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.0"
          },
          {
            "_id": null,
            "model": "runtimes for java technology",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.19"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6"
          },
          {
            "_id": null,
            "model": "networks sa6000 fips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0.840"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "hat enterprise linux desktop supplementary client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "5"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.25"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.5"
          },
          {
            "_id": null,
            "model": "aura system manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.116"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.3.740"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5.5.2"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1.6"
          },
          {
            "_id": null,
            "model": "windows server itanium sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "ediscovery analyzer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "project openssl h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.5"
          },
          {
            "_id": null,
            "model": "hat enterprise linux workstation supplementary",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "project openssl i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0i",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.2"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "tivoli directory server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.9"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment intirim fix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.133"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "network automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.10"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational method composer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "project openssl beta1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "project openssl a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "tivoli directory server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4"
          },
          {
            "_id": null,
            "model": "sitescope",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.1"
          },
          {
            "_id": null,
            "model": "project openssl c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "ssl for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.4"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.2.835"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.1"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.35"
          },
          {
            "_id": null,
            "model": "hat enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "5"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8x"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.4"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1.3"
          },
          {
            "_id": null,
            "model": "tivoli directory server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8t",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.39"
          },
          {
            "_id": null,
            "model": "tivoli netcool/omnibus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1.4"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.3"
          },
          {
            "_id": null,
            "model": "lotus domino",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.6"
          },
          {
            "_id": null,
            "model": "hat enterprise linux hpc node optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli netcool performance manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.1"
          },
          {
            "_id": null,
            "model": "network automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "forticlient",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5.760"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "fortigate",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.3"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.4.27"
          },
          {
            "_id": null,
            "model": "phaser",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "67000"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence video communication server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.10"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "windows for 32-bit systems sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "7"
          },
          {
            "_id": null,
            "model": "windows server for itanium-based systems sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2008"
          },
          {
            "_id": null,
            "model": "project openssl d",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "windows for x64-based systems sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "7"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "tivoli management framework",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.0.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.1.730"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.0.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0j",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.21"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "sitescope",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.6"
          },
          {
            "_id": null,
            "model": "windows server for 32-bit systems sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2008"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli business service manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.11"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.01"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.2"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "network node manager i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.03"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.7"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.19"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl beta3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "ipad",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.5"
          },
          {
            "_id": null,
            "model": "hat enterprise linux hpc node supplementary",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1.5"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.4"
          },
          {
            "_id": null,
            "model": "hat enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.31"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.11"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "lotus domino",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.8"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.03"
          },
          {
            "_id": null,
            "model": "performance manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.00"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.4"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.1"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "5"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "network analysis module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "web experience factory",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.17"
          },
          {
            "_id": null,
            "model": "network node manager i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.02"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.19"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "hat enterprise linux workstation optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.4"
          },
          {
            "_id": null,
            "model": "network node manager i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.00"
          },
          {
            "_id": null,
            "model": "cics transaction gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.9"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.8"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "lotus domino",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.8"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.4"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8o",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "project openssl e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "aura system platform sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "hat enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "5"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "runtimes for java technology",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.9"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.1.1"
          },
          {
            "_id": null,
            "model": "hat enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8s",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0.841"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop workstation client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.6"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.2"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.7"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.37"
          },
          {
            "_id": null,
            "model": "web interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.4"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.5"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.021"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.1"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.2"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.7.770"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "websphere application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.0"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "hat enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "6"
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "asset manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4.750"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.1"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.9.790"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "70574"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3566"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "HP",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "129266"
          },
          {
            "db": "PACKETSTORM",
            "id": "130334"
          },
          {
            "db": "PACKETSTORM",
            "id": "128921"
          },
          {
            "db": "PACKETSTORM",
            "id": "136577"
          },
          {
            "db": "PACKETSTORM",
            "id": "129071"
          },
          {
            "db": "PACKETSTORM",
            "id": "129065"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2014-3566",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2014-3566",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-71506",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 3.4,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 1.6,
                "id": "CVE-2014-3566",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-3566",
                "trust": 1.0,
                "value": "LOW"
              },
              {
                "author": "VULHUB",
                "id": "VHN-71506",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2014-3566",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-3566"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3566"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the \"POODLE\" issue. OpenSSL is prone to an information disclosure vulnerability. \nAn attacker can exploit this issue to perform man-in-the-middle attacks and obtain sensitive information. Successful exploits will lead to other attacks. \nThe following versions are vulnerable:\nOpenSSL 0.9.8 prior to 0.9.8zc\nOpenSSL 1.0.0 prior to 1.0.0o\nOpenSSL 1.0.1 prior to 1.0.1j. SSL protocol is the abbreviation of Secure Socket Layer protocol (Secure Socket Layer) developed by Netscape, which provides security and data integrity guarantee for Internet communication. The vulnerability is caused by the program\u0027s use of non-deterministic CBC padding. OpenSSL Security Advisory [15 Oct 2014]\n=======================================\n\nSRTP Memory Leak (CVE-2014-3513)\n================================\n\nSeverity: High\n\nA flaw in the DTLS SRTP extension parsing code allows an attacker, who\nsends a carefully crafted handshake message, to cause OpenSSL to fail\nto free up to 64k of memory causing a memory leak. This could be\nexploited in a Denial Of Service attack. This issue affects OpenSSL\n1.0.1 server implementations for both SSL/TLS and DTLS regardless of\nwhether SRTP is used or configured. Implementations of OpenSSL that\nhave been compiled with OPENSSL_NO_SRTP defined are not affected. \n\nThis issue was reported to OpenSSL on 26th September 2014, based on an original\nissue and patch developed by the LibreSSL project. Further analysis of the issue\nwas performed by the OpenSSL team. \n\nThe fix was developed by the OpenSSL team. \n\n\nSession Ticket Memory Leak (CVE-2014-3567)\n==========================================\n\nSeverity: Medium\n\nWhen an OpenSSL SSL/TLS/DTLS server receives a session ticket the\nintegrity of that ticket is first verified. In the event of a session\nticket integrity check failing, OpenSSL will fail to free memory\ncausing a memory leak. By sending a large number of invalid session\ntickets an attacker could exploit this issue in a Denial Of Service\nattack. \n\nThis issue was reported to OpenSSL on 8th October 2014. \n\nThe fix was developed by Stephen Henson of the OpenSSL core team. \n\n\nSSL 3.0 Fallback protection\n===========================\n\nSeverity: Medium\n\nOpenSSL has added support for TLS_FALLBACK_SCSV to allow applications\nto block the ability for a MITM attacker to force a protocol\ndowngrade. \n\nSome client applications (such as browsers) will reconnect using a\ndowngraded protocol to work around interoperability bugs in older\nservers. This could be exploited by an active man-in-the-middle to\ndowngrade connections to SSL 3.0 even if both sides of the connection\nsupport higher protocols. SSL 3.0 contains a number of weaknesses\nincluding POODLE (CVE-2014-3566). \n\nhttps://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv-00\nhttps://www.openssl.org/~bodo/ssl-poodle.pdf\n\nSupport for TLS_FALLBACK_SCSV was developed by Adam Langley and Bodo Moeller. \n\n\nBuild option no-ssl3 is incomplete (CVE-2014-3568)\n==================================================\n\nSeverity: Low\n\nWhen OpenSSL is configured with \"no-ssl3\" as a build option, servers\ncould accept and complete a SSL 3.0 handshake, and clients could be\nconfigured to send them. \n\nThis issue was reported to OpenSSL by Akamai Technologies on 14th October 2014. \n\nThe fix was developed by Akamai and the OpenSSL team. \n\n\nReferences\n==========\n\nURL for this Security Advisory:\nhttps://www.openssl.org/news/secadv_20141015.txt\n\nNote: the online version of the advisory may be updated with additional\ndetails over time. \n\nFor details of OpenSSL severity classifications please see:\nhttps://www.openssl.org/about/secpolicy.html\n\n. \nThe following firmware versions of Virtual Connect (VC) are impacted:\n\nHPE BladeSystem c-Class Virtual Connect (VC) Firmware 4.30 through VC 4.45\nHPE BladeSystem c-Class Virtual Connect (VC) Firmware 3.62 through VC 4.21\n\nNote: Firmware versions 3.62 through 4.21 are not impacted by CVE-2016-0800,\nCVE-2015-3194, CVE-2014-3566, CVE-2015-0705, CVE-2016-0799, and\nCVE-2016-2842. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201507-14\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Normal\n    Title: Oracle JRE/JDK: Multiple vulnerabilities\n     Date: July 10, 2015\n     Bugs: #537214\n       ID: 201507-14\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in Oracle JRE/JDK, allowing\nboth local and remote attackers to compromise various Java components. Please\nreview the CVE identifiers referenced below for details. \n\nImpact\n======\n\nAn context-dependent attacker may be able to influence the\nconfidentiality, integrity, and availability of Java\napplications/runtime. \n\nWorkaround\n==========\n\nThere is no workaround at this time. \n\nResolution\n==========\n\nAll Oracle JRE 8 users should upgrade to the latest stable version:\n\u003ccode\u003e\n# emerge --sync\n# emerge --ask --oneshot --verbose \"\u003e=dev-java/oracle-jre-bin-1.8.0.31\n\nAll Oracle JDK 8 users should upgrade to the latest stable version:\n\u003ccode\u003e\n# emerge --sync\n# emerge --ask --oneshot --verbose \"\u003e=dev-java/oracle-jdk-bin-1.8.0.31\n\nAll Oracle JRE 7 users should upgrade to the latest version:\n\u003ccode\u003e\n# emerge --sync\n# emerge --ask --oneshot --verbose \"\u003e=dev-java/oracle-jre-bin-1.7.0.76\n\nAll Oracle JDK 7 users should upgrade to the latest stable version:\n\u003ccode\u003e\n# emerge --sync\n# emerge --ask --oneshot --verbose \"\u003e=dev-java/oracle-jdk-bin-1.7.0.76\n\nReferences\n==========\n\n[  1 ] CVE-2014-3566\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3566\n[  2 ] CVE-2014-6549\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6549\n[  3 ] CVE-2014-6585\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6585\n[  4 ] CVE-2014-6587\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6587\n[  5 ] CVE-2014-6591\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6591\n[  6 ] CVE-2014-6593\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6593\n[  7 ] CVE-2014-6601\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-6601\n[  8 ] CVE-2015-0383\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0383\n[  9 ] CVE-2015-0395\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0395\n[ 10 ] CVE-2015-0400\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0400\n[ 11 ] CVE-2015-0403\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0403\n[ 12 ] CVE-2015-0406\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0406\n[ 13 ] CVE-2015-0407\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0407\n[ 14 ] CVE-2015-0408\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0408\n[ 15 ] CVE-2015-0410\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0410\n[ 16 ] CVE-2015-0412\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0412\n[ 17 ] CVE-2015-0413\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0413\n[ 18 ] CVE-2015-0421\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0421\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/201507-14\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2015 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. \n\n  HP CMS: UCMDB Browser all supported versions. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Critical: java-1.7.0-ibm security update\nAdvisory ID:       RHSA-2014:1876-01\nProduct:           Red Hat Enterprise Linux Supplementary\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2014-1876.html\nIssue date:        2014-11-19\nCVE Names:         CVE-2014-3065 CVE-2014-3566 CVE-2014-4288 \n                   CVE-2014-6456 CVE-2014-6457 CVE-2014-6458 \n                   CVE-2014-6476 CVE-2014-6492 CVE-2014-6493 \n                   CVE-2014-6502 CVE-2014-6503 CVE-2014-6506 \n                   CVE-2014-6511 CVE-2014-6512 CVE-2014-6515 \n                   CVE-2014-6527 CVE-2014-6531 CVE-2014-6532 \n                   CVE-2014-6558 \n=====================================================================\n\n1. Summary:\n\nUpdated java-1.7.0-ibm packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 Supplementary. \n\nRed Hat Product Security has rated this update as having Critical security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64\nRed Hat Enterprise Linux Server Supplementary (v. 5) - i386, ppc, s390x, x86_64\n\n3. Description:\n\nIBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM\nJava Software Development Kit. \n\nThis update fixes several vulnerabilities in the IBM Java Runtime\nEnvironment and the IBM Java Software Development Kit. Detailed\nvulnerability descriptions are linked from the IBM Security alerts\npage, listed in the References section. (CVE-2014-3065, CVE-2014-3566,\nCVE-2014-4288, CVE-2014-6456, CVE-2014-6457, CVE-2014-6458, CVE-2014-6476,\nCVE-2014-6492, CVE-2014-6493, CVE-2014-6502, CVE-2014-6503, CVE-2014-6506,\nCVE-2014-6511, CVE-2014-6512, CVE-2014-6515, CVE-2014-6527, CVE-2014-6531,\nCVE-2014-6532, CVE-2014-6558)\n\nThe CVE-2014-6512 issue was discovered by Florian Weimer of Red Hat\nProduct Security. \n\nNote: With this update, the IBM SDK now disables the SSL 3.0 protocol to\naddress the CVE-2014-3566 issue (also known as POODLE). Refer to the IBM\narticle linked to in the References section for additional details about\nthis change and instructions on how to re-enable SSL 3.0 support if needed. \n\nAll users of java-1.7.0-ibm are advised to upgrade to these updated\npackages, containing the IBM Java SE 7 SR8 release. All running instances\nof IBM Java must be restarted for the update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1071210 - CVE-2014-6512 OpenJDK: DatagramSocket connected socket missing source check (Libraries, 8039509)\n1150155 - CVE-2014-6506 OpenJDK: insufficient permission checks when setting resource bundle on system logger (Libraries, 8041564)\n1150651 - CVE-2014-6531 OpenJDK: insufficient ResourceBundle name check (Libraries, 8044274)\n1150669 - CVE-2014-6502 OpenJDK: LogRecord use of incorrect CL when loading ResourceBundle (Libraries, 8042797)\n1151046 - CVE-2014-6457 OpenJDK: Triple Handshake attack against TLS/SSL connections (JSSE, 8037066)\n1151063 - CVE-2014-6558 OpenJDK: CipherInputStream incorrect exception handling (Security, 8037846)\n1151517 - CVE-2014-6511 ICU: Layout Engine ContextualSubstitution missing boundary checks (JDK 2D, 8041540)\n1152756 - CVE-2014-6532 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152757 - CVE-2014-6503 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152758 - CVE-2014-6456 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)\n1152759 - CVE-2014-6492 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152760 - CVE-2014-6493 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152761 - CVE-2014-4288 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152763 - CVE-2014-6458 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152765 - CVE-2014-6476 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)\n1152766 - CVE-2014-6515 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)\n1152767 - CVE-2014-6527 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)\n1152789 - CVE-2014-3566 SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack\n1162554 - CVE-2014-3065 IBM JDK: privilege escalation via shared class cache\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop Supplementary (v. 5):\n\ni386:\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm\n\nx86_64:\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\n\nRed Hat Enterprise Linux Server Supplementary (v. 5):\n\ni386:\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm\n\nppc:\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.ppc.rpm\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.ppc64.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.ppc.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.ppc64.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.ppc.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.ppc64.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.ppc.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.ppc64.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.ppc.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.ppc.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.ppc64.rpm\n\ns390x:\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.s390.rpm\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.s390x.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.s390.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.s390x.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.s390.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.s390x.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.s390.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.s390x.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.s390.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.s390x.rpm\n\nx86_64:\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-demo-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-devel-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-jdbc-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-plugin-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.i386.rpm\njava-1.7.0-ibm-src-1.7.0.8.0-1jpp.1.el5.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2014-3065\nhttps://access.redhat.com/security/cve/CVE-2014-3566\nhttps://access.redhat.com/security/cve/CVE-2014-4288\nhttps://access.redhat.com/security/cve/CVE-2014-6456\nhttps://access.redhat.com/security/cve/CVE-2014-6457\nhttps://access.redhat.com/security/cve/CVE-2014-6458\nhttps://access.redhat.com/security/cve/CVE-2014-6476\nhttps://access.redhat.com/security/cve/CVE-2014-6492\nhttps://access.redhat.com/security/cve/CVE-2014-6493\nhttps://access.redhat.com/security/cve/CVE-2014-6502\nhttps://access.redhat.com/security/cve/CVE-2014-6503\nhttps://access.redhat.com/security/cve/CVE-2014-6506\nhttps://access.redhat.com/security/cve/CVE-2014-6511\nhttps://access.redhat.com/security/cve/CVE-2014-6512\nhttps://access.redhat.com/security/cve/CVE-2014-6515\nhttps://access.redhat.com/security/cve/CVE-2014-6527\nhttps://access.redhat.com/security/cve/CVE-2014-6531\nhttps://access.redhat.com/security/cve/CVE-2014-6532\nhttps://access.redhat.com/security/cve/CVE-2014-6558\nhttps://access.redhat.com/security/updates/classification/#critical\nhttps://www.ibm.com/developerworks/java/jdk/alerts/\nhttps://www-01.ibm.com/support/docview.wss?uid=swg21688165\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2014 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFUbOWGXlSAg2UNWIIRAhPmAJ96YO5JFEg4GS1MkDIeXQkRxbN0hACgoUiY\nehbScogUJnSordhBH11LgWQ=\n=ko7F\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nftp://ssl098zc:Secure12@ftp.usa.hp.com\n\nUser name: ssl098zc Password: (NOTE: Case sensitive) Secure12\n\nHP-UX Release\n HP-UX OpenSSL version\n\nB.11.11 (11i v1)\n A.00.09.08zc.001_HP-UX_B.11.11_32+64.depot\n\nB.11.23 (11i v2)\n A.00.09.08zc.002_HP-UX_B.11.23_IA-PA.depot\n\nB.11.31 (11i v3)\n A.00.09.08zc.003_HP-UX_B.11.31_IA-PA.depot\n\nMANUAL ACTIONS: Yes - Update\n\nInstall OpenSSL A.00.09.08zc or subsequent\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see: https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nThe update is available from HPE Software Depot: https://h20392.www2.hpe.com/\nportal/swdepot/displayProductInfo.do?productNumber=HPVPRhttps://www.hpe.com\n\nNote: HPE recommends customers using OV4VC 7.8.1 and earlier should upgrade\nto OV4VC 7.8.2. This addresses all SSL security vulnerabilities reported\nthrough March 28, 2016. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04496538\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04496538\nVersion: 1\n\nHPSBGN03164 rev.1 - HP IceWall SSO Dfw, SSO Certd and MCRP running OpenSSL,\nRemote Disclosure of Information\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2014-11-10\nLast Updated: 2014-11-10\n\nPotential Security Impact: Remote disclosure of information\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP IceWall SSO\nDfw , SSO Certd, and MCRP running OpenSSL. \n\nThis is the SSLv3 vulnerability known as \"Padding Oracle on Downgraded Legacy\nEncryption\" or \"Poodle\", which could be exploited remotely resulting in\ndisclosure of information.. \n\nReferences: CVE-2014-3566 (SSRT101789)\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \n\n  - HP IceWall MCRP v2.1, v3.0\n  - HP IceWall SSO Dfw v8.0, v8.0 R1, v8.0 R2, v8.0 R3, and v10.0\n  - HP IceWall SSO Certd v8.0R3 with DB plugin patch 2 and v10.0\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2014-3566    (AV:N/AC:M/Au:N/C:P/I:N/A:N)       4.3\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP recommends the following software updates and workaround instructions to\nresolve this vulnerability for HP IceWall SSO Dfw, SSO Certd, and MCRP. \n\n  The software updates are available at:\n\n     http://www.hp.com/jp/icewall_patchaccess\n\n  Notes:\n\n    - There are no updates or mitigations for MCRP 2.1 and Dfw\n8.0/8.0R1/8.0R2/8.0R3. \n    - HP recommends updating these older versions to the latest versions and\npatches and then following the WORKAROUND INSTRUCTIONS below. \n    - The WORKAROUND INSTRUCTIONS should be followed after applying the\nfollowing updates. \n\n  Software Update Versions\n\n    HP IceWall MCRP 3.0 Patch release 1\n\n    HP IceWall SSO Dfw 10.0 Patch release 7\n\n  Note: Both software update versions provide the use of TLSv1 which is not\nvulnerable and available for each supported platform. \n\nWORKAROUND INSTRUCTIONS\n\n  HP recommends the following information to protect against potential risk\nfor the following HP IceWall products. \n\n    HP IceWall SSO Dfw and MCRP\n\n      - If possible, do not use the SHOST setting which allows IceWall SSO\nDfw or MCRP to use SSL/TLS protocol to back-end web servers. \n\n      - The following steps should be applied if SSL/TLS protocol to back-end\nweb servers must be used:\n\n        o For MCRP: apply MCRP patch release 1\n        o For Dfw: apply Dfw patch release 7 or later\n        o Set SSL_PROTOCOL parameter to TLSv1\n\n    HP IceWall SSO Certd\n\n      - For Certd version 10.0 and 8.0R3: apply DB plugin patch release 2\n\n      - If possible, do not use the LDAPSSL setting which allows IceWall SSO\nCertd to connect to the LDAP server using SSL/TLS protocol. \n\n      - If SSL/TLS protocol must be used to LDAP server, configure the LDAP\nserver to use only TLSv1 as a mitigation for the vulnerability. For example,\non an OpenLDAP server (slapd), Set the TLSProtocolMin parameter. \n\nNote: The HP IceWall product is only available in Japan. \n\nHISTORY\nVersion:1 (rev.1) - 10 November 2014 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2014 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\nHP SiteScope 11.1x\nHP SiteScope 11.2x\n\nImportant note: HP SiteScope is impacted if and only if it is configured to\nwork over secure channel (HTTPS). This protocol is now disabled by default. \n\nFor the oldstable distribution (wheezy), this problem has been fixed\nin version 1.4.31-4+deb7u4. \n\nWe recommend that you upgrade your lighttpd packages",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-3566"
          },
          {
            "db": "BID",
            "id": "70574"
          },
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-3566"
          },
          {
            "db": "PACKETSTORM",
            "id": "169664"
          },
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "132641"
          },
          {
            "db": "PACKETSTORM",
            "id": "129266"
          },
          {
            "db": "PACKETSTORM",
            "id": "129178"
          },
          {
            "db": "PACKETSTORM",
            "id": "130334"
          },
          {
            "db": "PACKETSTORM",
            "id": "128921"
          },
          {
            "db": "PACKETSTORM",
            "id": "136577"
          },
          {
            "db": "PACKETSTORM",
            "id": "129071"
          },
          {
            "db": "PACKETSTORM",
            "id": "129065"
          },
          {
            "db": "PACKETSTORM",
            "id": "135908"
          }
        ],
        "trust": 2.34
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-71506",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-3566",
            "trust": 2.6
          },
          {
            "db": "BID",
            "id": "70574",
            "trust": 1.4
          },
          {
            "db": "ICS CERT",
            "id": "ICSMA-18-058-02",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61130",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61995",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60792",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61019",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61316",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61827",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61782",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60056",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61810",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61819",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61825",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60206",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61303",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61359",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61345",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59627",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60859",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61926",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031120",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031106",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031124",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031091",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031095",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031088",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031093",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031105",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031094",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031087",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031090",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031107",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031132",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031085",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031039",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031096",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031131",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031029",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031123",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031086",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031130",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031092",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1031089",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA14-290A",
            "trust": 1.1
          },
          {
            "db": "MCAFEE",
            "id": "SB10091",
            "trust": 1.1
          },
          {
            "db": "MCAFEE",
            "id": "SB10104",
            "trust": 1.1
          },
          {
            "db": "MCAFEE",
            "id": "SB10090",
            "trust": 1.1
          },
          {
            "db": "CERT/CC",
            "id": "VU#577193",
            "trust": 1.1
          },
          {
            "db": "JUNIPER",
            "id": "JSA10705",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128921",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "129065",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "129266",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "132641",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "136577",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "130334",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "129071",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "135908",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "131009",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130184",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131051",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128838",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130217",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130296",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129150",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132084",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132573",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131354",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128969",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132469",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128669",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128866",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129265",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129217",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "136599",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133640",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129263",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130759",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131011",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "139063",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128863",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130332",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128730",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130298",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131690",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128770",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130125",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128732",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128733",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130816",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129528",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130052",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129294",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132470",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133836",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129242",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129401",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130304",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130549",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129427",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130085",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131008",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137652",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130046",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130086",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128769",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130141",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131535",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130181",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133368",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132942",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130070",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129318",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132965",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131790",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130818",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130817",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128771",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130050",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133600",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130072",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129120",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129426",
            "trust": 0.1
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-267",
            "trust": 0.1
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-92692",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-71506",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-3566",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "169664",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137294",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129178",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-3566"
          },
          {
            "db": "BID",
            "id": "70574"
          },
          {
            "db": "PACKETSTORM",
            "id": "169664"
          },
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "132641"
          },
          {
            "db": "PACKETSTORM",
            "id": "129266"
          },
          {
            "db": "PACKETSTORM",
            "id": "129178"
          },
          {
            "db": "PACKETSTORM",
            "id": "130334"
          },
          {
            "db": "PACKETSTORM",
            "id": "128921"
          },
          {
            "db": "PACKETSTORM",
            "id": "136577"
          },
          {
            "db": "PACKETSTORM",
            "id": "129071"
          },
          {
            "db": "PACKETSTORM",
            "id": "129065"
          },
          {
            "db": "PACKETSTORM",
            "id": "135908"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3566"
          }
        ]
      },
      "id": "VAR-201410-1418",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          }
        ],
        "trust": 0.5931986333333333
      },
      "last_update_date": "2026-04-10T23:34:59.740000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Debian Security Advisories: DSA-3489-1 lighttpd -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=dcb828f6dad683ea0da76b6c62cde0ea"
          },
          {
            "title": "HP: SUPPORT COMMUNICATION- SECURITY BULLETIN\nHPSBPI03360 rev.5 - HP LaserJet Printers and MFPs, HP OfficeJet Printers and MFPs, and HP JetDirect Networking cards using OpenSSL, Remote Disclosure of Information",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=4545b8bd124b33fa1434a34c59003fd5"
          },
          {
            "title": "HP: HPSBPI03360 rev.5 - HP LaserJet Printers and MFPs, HP OfficeJet Printers and MFPs, and HP JetDirect Networking cards using OpenSSL, Remote Disclosure of Information",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBPI03360"
          },
          {
            "title": "Debian CVElist Bug Report Logs: Not possible to disable SSLv3",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=cd46735759deed658e1e15bd89794f91"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2014-426",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-426"
          },
          {
            "title": "Red Hat: CVE-2014-3566",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2014-3566"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2014-429",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-429"
          },
          {
            "title": "HP: SUPPORT COMMUNICATION- SECURITY BULLETIN\nHPSBPI03360 rev.5 - HP LaserJet Printers and MFPs, HP OfficeJet Printers and MFPs, and HP JetDirect Networking cards using OpenSSL, Remote Disclosure of Information",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=9e10ca91834a4f14416f4e75e776c6b6"
          },
          {
            "title": "Red Hat: Important: java-1.6.0-openjdk security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150085 - Security Advisory"
          },
          {
            "title": "Red Hat: Critical: java-1.7.0-openjdk security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150067 - Security Advisory"
          },
          {
            "title": "Debian Security Advisories: DSA-3253-1 pound -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=ad76a2fc91623114f1aaa478b7ecbe12"
          },
          {
            "title": "Red Hat: Important: java-1.7.0-openjdk security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150068 - Security Advisory"
          },
          {
            "title": "Red Hat: Important: java-1.8.0-openjdk security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150069 - Security Advisory"
          },
          {
            "title": "Red Hat: Critical: java-1.7.0-oracle security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150079 - Security Advisory"
          },
          {
            "title": "Red Hat: Important: java-1.6.0-sun security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150086 - Security Advisory"
          },
          {
            "title": "Debian Security Advisories: DSA-3053-1 openssl -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=89bdef3607a7448566a930eca0e94cb3"
          },
          {
            "title": "Symantec Security Advisories: SA83 : SSL v3 Poodle Attack",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=3703d1b5dc42da47d311d20afe00de22"
          },
          {
            "title": "Red Hat: Critical: java-1.8.0-oracle security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150080 - Security Advisory"
          },
          {
            "title": "Cisco: SSL-TLS Implementations Cipher Block Chaining Padding Information Disclosure Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=Cisco-SA-20141211-CVE-2014-8730"
          },
          {
            "title": "Debian CVElist Bug Report Logs: asterisk: CVE-2014-9374",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=5ec9c01ff2551bc64f61573dcb290621"
          },
          {
            "title": "Citrix Security Bulletins: CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=510bf83b7458a7704870eecdfadf5704"
          },
          {
            "title": "Debian CVElist Bug Report Logs: CVE-2014-8418 CVE-2014-8412 CVE-2014-8414 CVE-2014-8417",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=ea75db152315222e9fc0490c8b65fb98"
          },
          {
            "title": "Tenable Security Advisories: [R6] SSLv3 Protocol Vulnerability Affects Tenable Products (POODLE)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2014-09"
          },
          {
            "title": "Ubuntu Security Notice: openjdk-7 vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2487-1"
          },
          {
            "title": "Debian Security Advisories: DSA-3144-1 openjdk-7 -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=d750da8121d006282839ec576885794b"
          },
          {
            "title": "Red Hat: Low: Red Hat Satellite IBM Java Runtime security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150264 - Security Advisory"
          },
          {
            "title": "Debian Security Advisories: DSA-3147-1 openjdk-6 -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=f0587b999035ec3e03b0795bc92b0a31"
          },
          {
            "title": "Ubuntu Security Notice: openjdk-6 vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2486-1"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2015-480",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2015-480"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2015-471",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2015-471"
          },
          {
            "title": "Huawei Security Advisories: Huawei PSIRT: Technical Analysis Report Regarding Finite State Supply Chain Assessment",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=huawei_security_advisories\u0026qid=73885f997edba4cefdd6ba9030e87bdc"
          },
          {
            "title": "mangy-beast",
            "trust": 0.1,
            "url": "https://github.com/ashmastaflash/mangy-beast "
          },
          {
            "title": "BASH_froggPoodler",
            "trust": 0.1,
            "url": "https://github.com/FroggDev/BASH_froggPoodler "
          },
          {
            "title": "lacework-kaholo-autoremediation",
            "trust": 0.1,
            "url": "https://github.com/automatecloud/lacework-kaholo-autoremediation "
          },
          {
            "title": "bouncer",
            "trust": 0.1,
            "url": "https://github.com/ggrandes/bouncer "
          },
          {
            "title": "voipnowpatches",
            "trust": 0.1,
            "url": "https://github.com/4psa/voipnowpatches "
          },
          {
            "title": "ric13351",
            "trust": 0.1,
            "url": "https://github.com/bjayesh/ric13351 "
          },
          {
            "title": "squeeze-lighttpd-poodle",
            "trust": 0.1,
            "url": "https://github.com/matjohns/squeeze-lighttpd-poodle "
          },
          {
            "title": "poodle_check",
            "trust": 0.1,
            "url": "https://github.com/rameezts/poodle_check "
          },
          {
            "title": "poodle_protector",
            "trust": 0.1,
            "url": "https://github.com/stdevel/poodle_protector "
          },
          {
            "title": "bouncer",
            "trust": 0.1,
            "url": "https://github.com/TechPorter20/bouncer "
          },
          {
            "title": "aws_poodle_fix",
            "trust": 0.1,
            "url": "https://github.com/rvaralda/aws_poodle_fix "
          },
          {
            "title": "dnsmanagerpatches",
            "trust": 0.1,
            "url": "https://github.com/4psa/dnsmanagerpatches "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Wanderwille/13.01 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-3566"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-310",
            "trust": 1.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3566"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.2,
            "url": "https://security.gentoo.org/glsa/201507-14"
          },
          {
            "trust": 1.2,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1876.html"
          },
          {
            "trust": 1.2,
            "url": "https://www-01.ibm.com/support/docview.wss?uid=swg21688165"
          },
          {
            "trust": 1.2,
            "url": "https://www.openssl.org/news/secadv_20141015.txt"
          },
          {
            "trust": 1.2,
            "url": "https://www.openssl.org/~bodo/ssl-poodle.pdf"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031029"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031039"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031085"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031086"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031087"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031088"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031089"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031090"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031091"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031092"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031093"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031094"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031095"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031096"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031105"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031106"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031107"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031120"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031123"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031124"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031130"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031131"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031132"
          },
          {
            "trust": 1.1,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20141015-poodle"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59627"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60056"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60206"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60792"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60859"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61019"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61130"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61303"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61316"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61345"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61359"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61782"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61810"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61819"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61825"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61827"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61926"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61995"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/70574"
          },
          {
            "trust": 1.1,
            "url": "http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html"
          },
          {
            "trust": 1.1,
            "url": "http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/533724/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/533747"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/533746"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce/2015/jan/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce/2015/sep/msg00002.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2014/dsa-3053"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2015/dsa-3144"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2015/dsa-3147"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2015/dsa-3253"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2016/dsa-3489"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-november/142330.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-october/141158.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-october/141114.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-october/169374.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-october/169361.html"
          },
          {
            "trust": 1.1,
            "url": "https://security.gentoo.org/glsa/201606-11"
          },
          {
            "trust": 1.1,
            "url": "http://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04583581"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2014:203"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:062"
          },
          {
            "trust": 1.1,
            "url": "ftp://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2014-015.txt.asc"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1652.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1653.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1692.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1877.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1880.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1881.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1882.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1920.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1948.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0068.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0079.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0080.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0085.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0086.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0264.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0698.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1545.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1546.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00001.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-11/msg00021.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00002.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00024.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00026.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00027.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00033.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00036.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00018.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00066.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00000.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/ncas/alerts/ta14-290a"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-2486-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-2487-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/577193"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3ccommits.cxf.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3ccommits.cxf.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3ccommits.cxf.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3ccommits.cxf.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3ccommits.cxf.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3ccommits.cxf.apache.org%3e"
          },
          {
            "trust": 1.1,
            "url": "http://advisories.mageia.org/mgasa-2014-0416.html"
          },
          {
            "trust": 1.1,
            "url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory11.asc"
          },
          {
            "trust": 1.1,
            "url": "http://askubuntu.com/questions/537196/how-do-i-patch-workaround-sslv3-poodle-vulnerability-cve-2014-3566"
          },
          {
            "trust": 1.1,
            "url": "http://blog.cryptographyengineering.com/2014/10/attack-of-week-poodle.html"
          },
          {
            "trust": 1.1,
            "url": "http://blog.nodejs.org/2014/10/23/node-v0-10-33-stable/"
          },
          {
            "trust": 1.1,
            "url": "http://blogs.technet.com/b/msrc/archive/2014/10/14/security-advisory-3009008-released.aspx"
          },
          {
            "trust": 1.1,
            "url": "http://docs.ipswitch.com/moveit/dmz82/releasenotes/moveitreleasenotes82.pdf"
          },
          {
            "trust": 1.1,
            "url": "http://downloads.asterisk.org/pub/security/ast-2014-011.html"
          },
          {
            "trust": 1.1,
            "url": "http://googleonlinesecurity.blogspot.com/2014/10/this-poodle-bites-exploiting-ssl-30.html"
          },
          {
            "trust": 1.1,
            "url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04779034"
          },
          {
            "trust": 1.1,
            "url": "http://people.canonical.com/~ubuntu-security/cve/2014/cve-2014-3566.html"
          },
          {
            "trust": 1.1,
            "url": "http://support.apple.com/ht204244"
          },
          {
            "trust": 1.1,
            "url": "http://support.citrix.com/article/ctx200238"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021431"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021439"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686997"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687172"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687611"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21688283"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21692299"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.vmware.com/security/advisories/vmsa-2015-0003.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.websense.com/support/article/kbarticle/vulnerabilities-resolved-in-triton-apx-version-8-0"
          },
          {
            "trust": 1.1,
            "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-405500.htm"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/articles/1232123"
          },
          {
            "trust": 1.1,
            "url": "https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/"
          },
          {
            "trust": 1.1,
            "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl6"
          },
          {
            "trust": 1.1,
            "url": "https://bto.bluecoat.com/security-advisory/sa83"
          },
          {
            "trust": 1.1,
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1076983"
          },
          {
            "trust": 1.1,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1152789"
          },
          {
            "trust": 1.1,
            "url": "https://devcentral.f5.com/articles/cve-2014-3566-removing-sslv3-from-big-ip"
          },
          {
            "trust": 1.1,
            "url": "https://github.com/mpgn/poodle-poc"
          },
          {
            "trust": 1.1,
            "url": "https://groups.google.com/forum/#%21topic/docker-user/oym0i3xshju"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04819635"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05068681"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05157667"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05301946"
          },
          {
            "trust": 1.1,
            "url": "https://ics-cert.us-cert.gov/advisories/icsma-18-058-02"
          },
          {
            "trust": 1.1,
            "url": "https://puppet.com/security/cve/poodle-sslv3-vulnerability"
          },
          {
            "trust": 1.1,
            "url": "https://security.netapp.com/advisory/ntap-20141015-0001/"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/ht205217"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6527"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6529"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6531"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6535"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6536"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6541"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6542"
          },
          {
            "trust": 1.1,
            "url": "https://support.citrix.com/article/ctx216642"
          },
          {
            "trust": 1.1,
            "url": "https://support.lenovo.com/product_security/poodle"
          },
          {
            "trust": 1.1,
            "url": "https://support.lenovo.com/us/en/product_security/poodle"
          },
          {
            "trust": 1.1,
            "url": "https://technet.microsoft.com/library/security/3009008.aspx"
          },
          {
            "trust": 1.1,
            "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1015-security-advisory-7"
          },
          {
            "trust": 1.1,
            "url": "https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.dfranke.us/posts/2014-10-14-how-poodle-happened.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.elastic.co/blog/logstash-1-4-3-released"
          },
          {
            "trust": 1.1,
            "url": "https://www.imperialviolet.org/2014/10/14/poodle.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.suse.com/support/kb/doc.php?id=7015773"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00008.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00001.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html"
          },
          {
            "trust": 1.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3566"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141628688425177\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141879378918327\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142624719706349\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142805027510172\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142660345230545\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141697638231025\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143558192010071\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10104"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142804214608580\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142103967620673\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142496355704097\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142624590206005\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142721830231196\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142118135300698\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142607790919348\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10091"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142546741516006\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142350298616097\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142357976805598\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142495837901899\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141703183219781\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141577087123040\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143039249603103\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141813976718456\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141576815022399\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=openssl-dev\u0026m=141333049205629\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141450973807288\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141775427104070\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143290437727362\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141715130023061\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142350196615714\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=145983526810210\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10090"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142296755107581\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143558137709884\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143290583027876\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141814011518700\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142791032306609\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141694355519663\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141477196830952\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142350743917559\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141697676231104\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141577350823734\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142624679706236\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=144101915224472\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142624619906067"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143101048219218\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=144294141001552\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=144251162130364\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141620103726640\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142721887231400\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141450452204552\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142962817202793\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142354438527235\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142740155824959\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "https://templatelab.com/ssl-poodle/"
          },
          {
            "trust": 1.0,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10705"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142624619906067\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143628269912142\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143290522027658\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143290371927178\u0026w=2"
          },
          {
            "trust": 0.5,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.5,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.5,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3567"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3568"
          },
          {
            "trust": 0.2,
            "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_n"
          },
          {
            "trust": 0.2,
            "url": "http://www.hpe.com/support/security_bulletin_archive"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0800"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2842"
          },
          {
            "trust": 0.2,
            "url": "http://www.hpe.com/support/subscriber_choice"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0799"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141577350823734\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141576815022399\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141620103726640\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141697638231025\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141703183219781\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141697676231104\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141775427104070\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141814011518700\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141715130023061\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141813976718456\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142118135300698\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142296755107581\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142354438527235\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142350743917559\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142350196615714\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142350298616097\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142357976805598\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142962817202793\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143290371927178\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=144294141001552\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=145983526810210\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141450973807288\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142721887231400\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142660345230545\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142804214608580\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141450452204552\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141628688425177\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141577087123040\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141694355519663\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141879378918327\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143290583027876\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143628269912142\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143039249603103\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142624619906067\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142495837901899\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143290522027658\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142624719706349\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143290437727362\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142624590206005\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142624679706236\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142740155824959\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142721830231196\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142791032306609\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=144101915224472\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142103967620673\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143558137709884\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143558192010071\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142805027510172\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142546741516006\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=144251162130364\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141477196830952\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143101048219218\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142496355704097\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142624619906067"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=142607790919348\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=openssl-dev\u0026amp;m=141333049205629\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10705"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10090"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10091"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10104"
          },
          {
            "trust": 0.1,
            "url": "https://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv-00"
          },
          {
            "trust": 0.1,
            "url": "https://www.openssl.org/about/secpolicy.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3513"
          },
          {
            "trust": 0.1,
            "url": "http://h20564.www2.hpe.com/hpsc/swd/public"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0705"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-5161"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1789"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5600"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1791"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0412"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6549"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0403"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0395"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0407"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0406"
          },
          {
            "trust": 0.1,
            "url": "https://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6593"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0383"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6585"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6549"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6587"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0413"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6601"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6591"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6585"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6591"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6593"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0421"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6587"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0406"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0410"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-3566"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6601"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0403"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0408"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0412"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0413"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0410"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0408"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0400"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0400"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0407"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0421"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0383"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0395"
          },
          {
            "trust": 0.1,
            "url": "https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facets"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6531"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6532"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6511"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#critical"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6558"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6457"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3065"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6493"
          },
          {
            "trust": 0.1,
            "url": "https://www.ibm.com/developerworks/java/jdk/alerts/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-4288"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6503"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-4288"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6532"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6457"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6512"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6531"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3566"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6511"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3065"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6458"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6527"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6502"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6493"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6503"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6492"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6502"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6476"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6506"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6558"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6476"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6515"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6506"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6456"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6515"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6456"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-6527"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6458"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6492"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6512"
          },
          {
            "trust": 0.1,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://www.hpe.com"
          },
          {
            "trust": 0.1,
            "url": "https://h20392.www2.hpe.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/jp/icewall_patchaccess"
          },
          {
            "trust": 0.1,
            "url": "https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetsea"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71506"
          },
          {
            "db": "PACKETSTORM",
            "id": "169664"
          },
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "132641"
          },
          {
            "db": "PACKETSTORM",
            "id": "129266"
          },
          {
            "db": "PACKETSTORM",
            "id": "129178"
          },
          {
            "db": "PACKETSTORM",
            "id": "130334"
          },
          {
            "db": "PACKETSTORM",
            "id": "128921"
          },
          {
            "db": "PACKETSTORM",
            "id": "136577"
          },
          {
            "db": "PACKETSTORM",
            "id": "129071"
          },
          {
            "db": "PACKETSTORM",
            "id": "129065"
          },
          {
            "db": "PACKETSTORM",
            "id": "135908"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3566"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-71506",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-3566",
            "ident": null
          },
          {
            "db": "BID",
            "id": "70574",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "169664",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137294",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132641",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129266",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129178",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130334",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128921",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "136577",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129071",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129065",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "135908",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3566",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-10-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71506",
            "ident": null
          },
          {
            "date": "2014-10-15T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-3566",
            "ident": null
          },
          {
            "date": "2014-10-14T00:00:00",
            "db": "BID",
            "id": "70574",
            "ident": null
          },
          {
            "date": "2014-10-15T12:12:12",
            "db": "PACKETSTORM",
            "id": "169664",
            "ident": null
          },
          {
            "date": "2016-06-02T16:22:00",
            "db": "PACKETSTORM",
            "id": "137294",
            "ident": null
          },
          {
            "date": "2015-07-10T15:43:42",
            "db": "PACKETSTORM",
            "id": "132641",
            "ident": null
          },
          {
            "date": "2014-11-26T15:08:22",
            "db": "PACKETSTORM",
            "id": "129266",
            "ident": null
          },
          {
            "date": "2014-11-20T16:18:57",
            "db": "PACKETSTORM",
            "id": "129178",
            "ident": null
          },
          {
            "date": "2015-02-10T17:43:07",
            "db": "PACKETSTORM",
            "id": "130334",
            "ident": null
          },
          {
            "date": "2014-10-31T23:08:29",
            "db": "PACKETSTORM",
            "id": "128921",
            "ident": null
          },
          {
            "date": "2016-04-06T13:28:14",
            "db": "PACKETSTORM",
            "id": "136577",
            "ident": null
          },
          {
            "date": "2014-11-12T18:14:00",
            "db": "PACKETSTORM",
            "id": "129071",
            "ident": null
          },
          {
            "date": "2014-11-12T18:13:12",
            "db": "PACKETSTORM",
            "id": "129065",
            "ident": null
          },
          {
            "date": "2016-02-24T23:59:00",
            "db": "PACKETSTORM",
            "id": "135908",
            "ident": null
          },
          {
            "date": "2014-10-15T00:55:02.137000",
            "db": "NVD",
            "id": "CVE-2014-3566",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2023-02-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71506",
            "ident": null
          },
          {
            "date": "2023-09-12T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-3566",
            "ident": null
          },
          {
            "date": "2015-11-03T18:53:00",
            "db": "BID",
            "id": "70574",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-3566",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "70574"
          }
        ],
        "trust": 0.3
      },
      "title": {
        "_id": null,
        "data": "OpenSSL CVE-2014-3566 Man In The Middle Information Disclosure Vulnerability",
        "sources": [
          {
            "db": "BID",
            "id": "70574"
          }
        ],
        "trust": 0.3
      },
      "type": {
        "_id": null,
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "70574"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-200809-0176

    Vulnerability from variot - Updated: 2026-04-10 23:32

    sys/netinet6/icmp6.c in the kernel in FreeBSD 6.3 through 7.1, NetBSD 3.0 through 4.0, and possibly other operating systems does not properly check the proposed new MTU in an ICMPv6 Packet Too Big Message, which allows remote attackers to cause a denial of service (panic) via a crafted Packet Too Big Message. A vulnerability in some implementations of the IPv6 Neighbor Discovery Protocol may allow a nearby attacker to intercept traffic or cause congested links to become overloaded. FreeBSD is prone to a remote denial-of-service vulnerability. Remote attackers can exploit this issue to cause the kernel's TCP stack to panic, denying service to legitimate users. ----------------------------------------------------------------------

    Do you need accurate and reliable IDS / IPS / AV detection rules?

    Get in-depth vulnerability details: http://secunia.com/binary_analysis/sample_analysis/


    TITLE: Force10 FTOS Routers IPv6 Neighbor Discovery Protocol Vulnerability

    SECUNIA ADVISORY ID: SA32117

    VERIFY ADVISORY: http://secunia.com/advisories/32117/

    CRITICAL: Less critical

    IMPACT: Spoofing, Exposure of sensitive information, DoS

    WHERE:

    From local network

    OPERATING SYSTEM: Force10 FTOS Routers http://secunia.com/advisories/product/20024/

    DESCRIPTION: A vulnerability has been reported in Force10 FTOS Routers, which can be exploited by malicious people to conduct spoofing attacks, disclose potentially sensitive information, or to cause a DoS (Denial of Service). This can be exploited to add a fake entry to the router's neighbor cache via a neighbor solicitation request containing a spoofed IPv6 address.

    Successful exploitation may allow the interception or disruption of network traffic, but requires that the IPv6 nodes involved in the attack are using the same router.

    SOLUTION: The vendor has reportedly fixed the vulnerability in FTOS version E7.7.1.1.

    PROVIDED AND/OR DISCOVERED BY: US-CERT credits David Miles.

    ORIGINAL ADVISORY: http://www.kb.cert.org/vuls/id/MAPG-7H2RY7

    OTHER REFERENCES: US-CERT VU#472363: http://www.kb.cert.org/vuls/id/472363


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/advisories/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ============================================================================= FreeBSD-SA-08:09.icmp6 Security Advisory The FreeBSD Project

    Topic: Remote kernel panics on IPv6 connections

    Category: core Module: sys_netinet6 Announced: 2008-09-03 Credits: Tom Parker, Bjoern A. Zeeb Affects: All supported versions of FreeBSD. Corrected: 2008-09-03 19:09:47 UTC (RELENG_7, 7.1-PRERELEASE) 2008-09-03 19:09:47 UTC (RELENG_7_0, 7.0-RELEASE-p4) 2008-09-03 19:09:47 UTC (RELENG_6, 6.4-PRERELEASE) 2008-09-03 19:09:47 UTC (RELENG_6_3, 6.3-RELEASE-p4) CVE Name: CVE-2008-3530

    For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit .

    I. Background

    IPv6 nodes use ICMPv6 amongst other things to report errors encountered while processing packets. The 'Packet Too Big Message' is sent in case a node cannot forward a packet because the size of the packet is larger than the MTU of next-hop link.

    II.

    III. Workaround

    Systems without INET6 / IPv6 support are not vulnerable and neither are systems which do not listen on any IPv6 TCP sockets and have no active IPv6 connections.

    Filter ICMPv6 'Packet Too Big Messages' using a firewall, but this will at the same time break PMTU support for IPv6 connections.

    V. Solution

    Perform one of the following:

    1) Upgrade your vulnerable system to 6-STABLE or 7-STABLE, or to the RELENG_6_3 or RELENG_7_0 security branch dated after the correction date.

    2) To patch your present system:

    The following patches have been verified to apply to FreeBSD 6.3 and FreeBSD 7.0 systems.

    a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.

    fetch http://security.FreeBSD.org/patches/SA-08:09/icmp6.patch

    fetch http://security.FreeBSD.org/patches/SA-08:09/icmp6.patch.asc

    b) Apply the patch.

    cd /usr/src

    patch < /path/to/patch

    c) Recompile your kernel as described in and reboot the system.

    VI. Correction details

    The following list contains the revision numbers of each file that was corrected in FreeBSD.

    Branch Revision Path


    RELENG_6 src/sys/netinet6/icmp6.c 1.62.2.11 RELENG_6_3 src/UPDATING 1.416.2.37.2.9 src/sys/conf/newvers.sh 1.69.2.15.2.8 src/sys/netinet6/icmp6.c 1.62.2.9.2.1 RELENG_7 src/sys/netinet6/icmp6.c 1.80.2.7 RELENG_7_0 src/UPDATING 1.507.2.3.2.8 src/sys/conf/newvers.sh 1.72.2.5.2.8 src/sys/netinet6/icmp6.c 1.80.4.1


    VII. References

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3530

    The latest revision of this advisory is available at http://security.FreeBSD.org/advisories/FreeBSD-SA-08:09.icmp6.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD)

    iD8DBQFIvu2hFdaIBMps37IRAjxxAJwIIXP+ALAZkvG5m687PC+92BtXTwCfUZdS AvvrO0r+UAa6bn1H9mFf9So= =MBB1 -----END PGP SIGNATURE-----

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 2.4,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 2.4,
            "vendor": "freebsd",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 2.4,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "netbsd",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "netbsd",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "extreme",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "force10",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm zseries",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "netbsd",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "airmac express",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "base station"
          },
          {
            "_id": null,
            "model": "airmac extreme",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "base station"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "v10.5 to  v10.5.6"
          },
          {
            "_id": null,
            "model": "mac os x server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "v10.5 to  v10.5.6"
          },
          {
            "_id": null,
            "model": "time capsule",
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": "7.0-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "current",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "-stable",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.3"
          },
          {
            "_id": null,
            "model": "airport extreme base station with 802.11n",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.3"
          },
          {
            "_id": null,
            "model": "airport base station",
            "scope": null,
            "trust": 0.3,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5"
          },
          {
            "_id": null,
            "model": "beta2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "time capsule",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.4"
          },
          {
            "_id": null,
            "model": "airport express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "-releng",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "airport express base station with 802.11n",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.4"
          },
          {
            "_id": null,
            "model": "airport extreme base station",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "airport express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.2"
          },
          {
            "_id": null,
            "model": "financials server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "navision",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.1"
          },
          {
            "_id": null,
            "model": "-releng",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "4,0 beta",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "3.1 rc3",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.7"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#472363"
          },
          {
            "db": "BID",
            "id": "31004"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-3530"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:freebsd:freebsd",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:netbsd:netbsd",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:apple:airport_express",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:apple:airmac_extreme",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:apple:time_capsule",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Tom Parker\u203b tom@rooted.net\u203bBjoern A. Zeeb\u203b bz@zabbadoz.net",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2008-3530",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.1,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2008-3530",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2008-3530",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#472363",
                "trust": 0.8,
                "value": "2.70"
              },
              {
                "author": "NVD",
                "id": "CVE-2008-3530",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200809-087",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#472363"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-3530"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "sys/netinet6/icmp6.c in the kernel in FreeBSD 6.3 through 7.1, NetBSD 3.0 through 4.0, and possibly other operating systems does not properly check the proposed new MTU in an ICMPv6 Packet Too Big Message, which allows remote attackers to cause a denial of service (panic) via a crafted Packet Too Big Message. A vulnerability in some implementations of the IPv6 Neighbor Discovery Protocol may allow a nearby attacker to intercept traffic or cause congested links to become overloaded. FreeBSD is prone to a remote denial-of-service vulnerability. \nRemote attackers can exploit this issue to cause the kernel\u0027s TCP stack to panic, denying service to legitimate users. ----------------------------------------------------------------------\n\nDo you need accurate and reliable IDS / IPS / AV detection rules?\n\nGet in-depth vulnerability details:\nhttp://secunia.com/binary_analysis/sample_analysis/\n\n----------------------------------------------------------------------\n\nTITLE:\nForce10 FTOS Routers IPv6 Neighbor Discovery Protocol Vulnerability\n\nSECUNIA ADVISORY ID:\nSA32117\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/32117/\n\nCRITICAL:\nLess critical\n\nIMPACT:\nSpoofing, Exposure of sensitive information, DoS\n\nWHERE:\n\u003eFrom local network\n\nOPERATING SYSTEM:\nForce10 FTOS Routers\nhttp://secunia.com/advisories/product/20024/\n\nDESCRIPTION:\nA vulnerability has been reported in Force10 FTOS Routers, which can\nbe exploited by malicious people to conduct spoofing attacks,\ndisclose potentially sensitive information, or to cause a DoS (Denial\nof Service). This can be exploited to add a fake entry to the router\u0027s\nneighbor cache via a neighbor solicitation request containing a\nspoofed IPv6 address. \n\nSuccessful exploitation may allow the interception or disruption of\nnetwork traffic, but requires that the IPv6 nodes involved in the\nattack are using the same router. \n\nSOLUTION:\nThe vendor has reportedly fixed the vulnerability in FTOS version\nE7.7.1.1. \n\nPROVIDED AND/OR DISCOVERED BY:\nUS-CERT credits David Miles. \n\nORIGINAL ADVISORY:\nhttp://www.kb.cert.org/vuls/id/MAPG-7H2RY7\n\nOTHER REFERENCES:\nUS-CERT VU#472363:\nhttp://www.kb.cert.org/vuls/id/472363\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=============================================================================\nFreeBSD-SA-08:09.icmp6                                      Security Advisory\n                                                          The FreeBSD Project\n\nTopic:          Remote kernel panics on IPv6 connections\n\nCategory:       core\nModule:         sys_netinet6\nAnnounced:      2008-09-03\nCredits:        Tom Parker, Bjoern A. Zeeb\nAffects:        All supported versions of FreeBSD. \nCorrected:      2008-09-03 19:09:47 UTC (RELENG_7, 7.1-PRERELEASE)\n                2008-09-03 19:09:47 UTC (RELENG_7_0, 7.0-RELEASE-p4)\n                2008-09-03 19:09:47 UTC (RELENG_6, 6.4-PRERELEASE)\n                2008-09-03 19:09:47 UTC (RELENG_6_3, 6.3-RELEASE-p4)\nCVE Name:       CVE-2008-3530\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:http://security.FreeBSD.org/\u003e. \n\nI.   Background\n\nIPv6 nodes use ICMPv6 amongst other things to report errors encountered\nwhile processing packets.  The \u0027Packet Too Big Message\u0027 is sent in\ncase a node cannot forward a packet because the size of the packet is\nlarger than the MTU of next-hop link. \n\nII. \n\nIII.  Workaround\n\nSystems without INET6 / IPv6 support are not vulnerable and neither\nare systems which do not listen on any IPv6 TCP sockets and have no\nactive IPv6 connections. \n\nFilter ICMPv6 \u0027Packet Too Big Messages\u0027 using a firewall, but this\nwill at the same time break PMTU support for IPv6 connections. \n\nV.   Solution\n\nPerform one of the following:\n\n1) Upgrade your vulnerable system to 6-STABLE or 7-STABLE, or to the\nRELENG_6_3 or RELENG_7_0 security branch dated after the correction date. \n\n2) To patch your present system:\n\nThe following patches have been verified to apply to FreeBSD 6.3 and\nFreeBSD 7.0 systems. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n# fetch http://security.FreeBSD.org/patches/SA-08:09/icmp6.patch\n# fetch http://security.FreeBSD.org/patches/SA-08:09/icmp6.patch.asc\n\nb) Apply the patch. \n\n# cd /usr/src\n# patch \u003c /path/to/patch\n\nc) Recompile your kernel as described in\n\u003cURL:http://www.FreeBSD.org/handbook/kernelconfig.html\u003e and reboot the\nsystem. \n\nVI.  Correction details\n\nThe following list contains the revision numbers of each file that was\ncorrected in FreeBSD. \n\nBranch                                                           Revision\n  Path\n- -------------------------------------------------------------------------\nRELENG_6\n  src/sys/netinet6/icmp6.c                                      1.62.2.11\nRELENG_6_3\n  src/UPDATING                                             1.416.2.37.2.9\n  src/sys/conf/newvers.sh                                   1.69.2.15.2.8\n  src/sys/netinet6/icmp6.c                                   1.62.2.9.2.1\nRELENG_7\n  src/sys/netinet6/icmp6.c                                       1.80.2.7\nRELENG_7_0\n  src/UPDATING                                              1.507.2.3.2.8\n  src/sys/conf/newvers.sh                                    1.72.2.5.2.8\n  src/sys/netinet6/icmp6.c                                       1.80.4.1\n- -------------------------------------------------------------------------\n\nVII. References\n\nhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3530\n\nThe latest revision of this advisory is available at\nhttp://security.FreeBSD.org/advisories/FreeBSD-SA-08:09.icmp6.asc\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.9 (FreeBSD)\n\niD8DBQFIvu2hFdaIBMps37IRAjxxAJwIIXP+ALAZkvG5m687PC+92BtXTwCfUZdS\nAvvrO0r+UAa6bn1H9mFf9So=\n=MBB1\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2008-3530"
          },
          {
            "db": "CERT/CC",
            "id": "VU#472363"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          },
          {
            "db": "BID",
            "id": "31004"
          },
          {
            "db": "PACKETSTORM",
            "id": "70557"
          },
          {
            "db": "PACKETSTORM",
            "id": "69619"
          }
        ],
        "trust": 2.79
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2008-3530",
            "trust": 2.8
          },
          {
            "db": "BID",
            "id": "31004",
            "trust": 2.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2009-0633",
            "trust": 2.4
          },
          {
            "db": "SECUNIA",
            "id": "31745",
            "trust": 2.4
          },
          {
            "db": "SECUNIA",
            "id": "32401",
            "trust": 2.4
          },
          {
            "db": "SECTRACK",
            "id": "1020820",
            "trust": 2.4
          },
          {
            "db": "SECTRACK",
            "id": "1021111",
            "trust": 2.4
          },
          {
            "db": "VUPEN",
            "id": "ADV-2009-1297",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "35074",
            "trust": 1.6
          },
          {
            "db": "USCERT",
            "id": "TA09-133A",
            "trust": 1.6
          },
          {
            "db": "XF",
            "id": "44908",
            "trust": 1.4
          },
          {
            "db": "CERT/CC",
            "id": "VU#472363",
            "trust": 0.9
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306",
            "trust": 0.8
          },
          {
            "db": "APPLE",
            "id": "APPLE-SA-2009-05-12",
            "trust": 0.6
          },
          {
            "db": "NETBSD",
            "id": "NETBSD-SA2008-015",
            "trust": 0.6
          },
          {
            "db": "XF",
            "id": "6",
            "trust": 0.6
          },
          {
            "db": "CERT/CC",
            "id": "TA09-133A",
            "trust": 0.6
          },
          {
            "db": "FREEBSD",
            "id": "FREEBSD-SA-08:09",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087",
            "trust": 0.6
          },
          {
            "db": "SECUNIA",
            "id": "32117",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "70557",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "69619",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#472363"
          },
          {
            "db": "BID",
            "id": "31004"
          },
          {
            "db": "PACKETSTORM",
            "id": "70557"
          },
          {
            "db": "PACKETSTORM",
            "id": "69619"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-3530"
          }
        ]
      },
      "id": "VAR-200809-0176",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.3892159333333334
      },
      "last_update_date": "2026-04-10T23:32:51.513000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "HT3549",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT3549"
          },
          {
            "title": "HT3467",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT3467"
          },
          {
            "title": "HT3467",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT3467?viewlocale=ja_JP"
          },
          {
            "title": "HT3549",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT3549?viewlocale=ja_JP"
          },
          {
            "title": "FreeBSD-SA-08:09.icmp6",
            "trust": 0.8,
            "url": "http://security.freebsd.org/advisories/FreeBSD-SA-08:09.icmp6.asc"
          },
          {
            "title": "NetBSD-SA2008-015",
            "trust": 0.8,
            "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-015.txt.asc"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-3530"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/31004"
          },
          {
            "trust": 2.4,
            "url": "http://www.vupen.com/english/advisories/2009/0633"
          },
          {
            "trust": 2.4,
            "url": "http://www.securitytracker.com/id?1021111"
          },
          {
            "trust": 2.4,
            "url": "http://www.securitytracker.com/id?1020820"
          },
          {
            "trust": 2.4,
            "url": "http://secunia.com/advisories/32401"
          },
          {
            "trust": 2.4,
            "url": "http://secunia.com/advisories/31745"
          },
          {
            "trust": 1.9,
            "url": "http://support.apple.com/kb/ht3467"
          },
          {
            "trust": 1.7,
            "url": "http://security.freebsd.org/advisories/freebsd-sa-08:09.icmp6.asc"
          },
          {
            "trust": 1.6,
            "url": "http://www.us-cert.gov/cas/techalerts/ta09-133a.html"
          },
          {
            "trust": 1.6,
            "url": "http://www.vupen.com/english/advisories/2009/1297"
          },
          {
            "trust": 1.6,
            "url": "http://support.apple.com/kb/ht3549"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/35074"
          },
          {
            "trust": 1.6,
            "url": "http://lists.apple.com/archives/security-announce/2009/may/msg00002.html"
          },
          {
            "trust": 1.6,
            "url": "ftp://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2008-015.txt.asc"
          },
          {
            "trust": 1.4,
            "url": "http://xforce.iss.net/xforce/xfdb/44908"
          },
          {
            "trust": 1.0,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44908"
          },
          {
            "trust": 0.9,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-3530"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc4861"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc4861#section-2.1"
          },
          {
            "trust": 0.8,
            "url": "http://www.ietf.org/rfc/rfc2461.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.ietf.org/rfc/rfc3756.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.ietf.org/rfc/rfc3177.txt"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3971"
          },
          {
            "trust": 0.8,
            "url": "http://docs.sun.com/app/docs/doc/817-0573/6mgc65bb6?a=view"
          },
          {
            "trust": 0.8,
            "url": "http://msdn.microsoft.com/en-us/library/ms900123.aspx"
          },
          {
            "trust": 0.8,
            "url": "http://en.wikipedia.org/wiki/forwarding_information_base#fibs_in_ingress_filtering_against_denial_of_service"
          },
          {
            "trust": 0.8,
            "url": "http://en.wikipedia.org/wiki/reverse_path_forwarding"
          },
          {
            "trust": 0.8,
            "url": "http://www.openbsd.org/faq/pf/filter.html#antispoof"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-3530"
          },
          {
            "trust": 0.3,
            "url": "http://www.freebsd.org/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/binary_analysis/sample_analysis/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/product/20024/"
          },
          {
            "trust": 0.1,
            "url": "http://www.kb.cert.org/vuls/id/472363"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://www.kb.cert.org/vuls/id/mapg-7h2ry7"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/32117/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/\u003e."
          },
          {
            "trust": 0.1,
            "url": "http://www.freebsd.org/handbook/kernelconfig.html\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/patches/sa-08:09/icmp6.patch"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-3530"
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/patches/sa-08:09/icmp6.patch.asc"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#472363"
          },
          {
            "db": "BID",
            "id": "31004"
          },
          {
            "db": "PACKETSTORM",
            "id": "70557"
          },
          {
            "db": "PACKETSTORM",
            "id": "69619"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-3530"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#472363",
            "ident": null
          },
          {
            "db": "BID",
            "id": "31004",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "70557",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "69619",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-002306",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2008-3530",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2008-10-02T00:00:00",
            "db": "CERT/CC",
            "id": "VU#472363",
            "ident": null
          },
          {
            "date": "2008-09-03T00:00:00",
            "db": "BID",
            "id": "31004",
            "ident": null
          },
          {
            "date": "2008-10-02T21:01:10",
            "db": "PACKETSTORM",
            "id": "70557",
            "ident": null
          },
          {
            "date": "2008-09-04T02:48:27",
            "db": "PACKETSTORM",
            "id": "69619",
            "ident": null
          },
          {
            "date": "2008-09-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200809-087",
            "ident": null
          },
          {
            "date": "2009-04-06T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2008-002306",
            "ident": null
          },
          {
            "date": "2008-09-05T16:08:00",
            "db": "NVD",
            "id": "CVE-2008-3530",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2009-04-27T00:00:00",
            "db": "CERT/CC",
            "id": "VU#472363",
            "ident": null
          },
          {
            "date": "2009-05-13T18:46:00",
            "db": "BID",
            "id": "31004",
            "ident": null
          },
          {
            "date": "2009-05-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200809-087",
            "ident": null
          },
          {
            "date": "2009-06-29T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2008-002306",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2008-3530",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "IPv6 implementations insecurely update Forwarding Information Base",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#472363"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "input validation",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200809-087"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201506-0038

    Vulnerability from variot - Updated: 2026-04-10 23:32

    Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet with TXSTATUS_STARTPACKET set and then a crafted packet with TXSTATUS_DEVICEOWNS set. Xen is a virtualization technology for the Linux kernel that allows multiple operating systems to run simultaneously. QEMU (also known as Quick Emulator) is a set of analog processor software developed by French programmer Fabrice Bellard. The software has the characteristics of fast speed and cross-platform. 5 client) - x86_64 RHEL Virtualization (v. 5 server) - x86_64

    1. Note: The procedure in the Solution section must be performed before this update will take effect.

    2) Either reboot the hypervisor machine or, as the root user, remove (using "modprobe -r [module]") and reload (using "modprobe [module]") all of the following modules which are currently running (determined using "lsmod"): kvm, ksm, kvm-intel or kvm-amd. 5 client):

    Source: kvm-83-273.el5_11.src.rpm

    x86_64: kmod-kvm-83-273.el5_11.x86_64.rpm kmod-kvm-debug-83-273.el5_11.x86_64.rpm kvm-83-273.el5_11.x86_64.rpm kvm-debuginfo-83-273.el5_11.x86_64.rpm kvm-qemu-img-83-273.el5_11.x86_64.rpm kvm-tools-83-273.el5_11.x86_64.rpm

    RHEL Virtualization (v. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: qemu-kvm security update Advisory ID: RHSA-2015:1087-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-1087.html Issue date: 2015-06-10 CVE Names: CVE-2015-3209 =====================================================================

    1. Summary:

    Updated qemu-kvm packages that fix one security issue are now available for Red Hat Enterprise Linux 6.

    Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64

    1. Description:

    KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. The qemu-kvm package provides the user-space component for running virtual machines using KVM.

    A flaw was found in the way QEMU's AMD PCnet Ethernet emulation handled multi-TMD packets with a length above 4096 bytes. (CVE-2015-3209)

    Red Hat would like to thank Matt Tait of Google's Project Zero security team for reporting this issue.

    All qemu-kvm users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    For details on how to apply this update, refer to:

    https://access.redhat.com/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1225882 - CVE-2015-3209 qemu: pcnet: multi-tmd buffer overflow in the tx path

    1. Package List:

    Red Hat Enterprise Linux Desktop (v. 6):

    Source: qemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm

    i386: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.i686.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.i686.rpm

    x86_64: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: qemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm

    x86_64: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: qemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm

    i386: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.i686.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.i686.rpm

    x86_64: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: qemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm

    i386: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.i686.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.i686.rpm

    x86_64: qemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm qemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2015-3209 https://access.redhat.com/security/updates/classification/#important

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFVeHRmXlSAg2UNWIIRAkq5AKCeYGr9MG7Kdic1FVJZw2avAhO6eACdFG0W VCkW3jIuuaxOqeYM0s8u6ss= =+WsT -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .

    CVE-2015-4037

    Kurt Seifried of Red Hat Product Security discovered that QEMU's
    user mode networking stack uses predictable temporary file names
    when the -smb option is used.
    

    CVE-2015-4163

    Jan Beulich discovered that a missing version check in the
    GNTTABOP_swap_grant_ref hypercall handler may result in denial of service. 
    This only applies to Debian stable/jessie.
    

    CVE-2015-4164

    Andrew Cooper discovered a vulnerability in the iret hypercall handler,
    which may result in denial of service.
    

    For the oldstable distribution (wheezy), these problems have been fixed in version 4.1.4-3+deb7u8.

    For the stable distribution (jessie), these problems have been fixed in version 4.4.1-9+deb8u1. CVE-2015-3209, CVE-2015-4103, CVE-2015-4104, CVE-2015-4105 and CVE-2015-4106 don't affect the Xen package in stable jessie, it uses the standard qemu package and has already been fixed in DSA-3284-1.

    For the unstable distribution (sid), these problems will be fixed soon.

    We recommend that you upgrade your xen packages. From: Yury German blueknight@gentoo.org To: gentoo-announce@lists.gentoo.org Message-ID: 57035F2D.8090108@gentoo.org Subject: [ GLSA 201604-03 ] Xen: Multiple vulnerabilities


    Gentoo Linux Security Advisory GLSA 201604-03


                                           https://security.gentoo.org/
    

    Severity: Normal Title: Xen: Multiple vulnerabilities Date: April 05, 2016 Bugs: #445254, #513832, #547202, #549200, #549950, #550658, #553664, #553718, #555532, #556304, #561110, #564472, #564932, #566798, #566838, #566842, #567962, #571552, #571556, #574012 ID: 201604-03


    Synopsis

    Multiple vulnerabilities have been found in Xen, the worst of which cause a Denial of Service.

    Background

    Xen is a bare-metal hypervisor.

    Affected packages

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
    

    1 app-emulation/xen < 4.6.0-r9 >= 4.6.0-r9 >= 4.5.2-r5 2 app-emulation/xen-pvgrub < 4.6.0 Vulnerable! 3 app-emulation/xen-tools < 4.6.0-r9 >= 4.6.0-r9 >= 4.5.2-r5 4 app-emulation/pvgrub >= 4.6.0 *>= 4.5.2 ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. ------------------------------------------------------------------- 4 affected packages

    Description

    Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details.

    Workaround

    There is no known workaround at this time.

    Resolution

    All Xen 4.5 users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.5.2-r5"

    All Xen 4.6 users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.6.0-r9"

    All Xen tools 4.5 users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot -v ">=app-emulation/xen-tools-4.5.2-r5"

    All Xen tools 4.6 users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot -v ">=app-emulation/xen-tools-4.6.0-r9"

    All Xen pvgrub users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-pvgrub-4.6.0"=

    References

    [ 1 ] CVE-2012-3494 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3494 [ 2 ] CVE-2012-3495 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3495 [ 3 ] CVE-2012-3496 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3496 [ 4 ] CVE-2012-3497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3497 [ 5 ] CVE-2012-3498 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3498 [ 6 ] CVE-2012-3515 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3515 [ 7 ] CVE-2012-4411 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4411 [ 8 ] CVE-2012-4535 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4535 [ 9 ] CVE-2012-4536 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4536 [ 10 ] CVE-2012-4537 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4537 [ 11 ] CVE-2012-4538 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4538 [ 12 ] CVE-2012-4539 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4539 [ 13 ] CVE-2012-6030 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6030 [ 14 ] CVE-2012-6031 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6031 [ 15 ] CVE-2012-6032 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6032 [ 16 ] CVE-2012-6033 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6033 [ 17 ] CVE-2012-6034 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6034 [ 18 ] CVE-2012-6035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6035 [ 19 ] CVE-2012-6036 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6036 [ 20 ] CVE-2015-2151 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2151 [ 21 ] CVE-2015-3209 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3209 [ 22 ] CVE-2015-3259 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3259 [ 23 ] CVE-2015-3340 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3340 [ 24 ] CVE-2015-3456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3456 [ 25 ] CVE-2015-4103 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4103 [ 26 ] CVE-2015-4104 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4104 [ 27 ] CVE-2015-4105 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4105 [ 28 ] CVE-2015-4106 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4106 [ 29 ] CVE-2015-4163 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4163 [ 30 ] CVE-2015-4164 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4164 [ 31 ] CVE-2015-5154 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5154 [ 32 ] CVE-2015-7311 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7311 [ 33 ] CVE-2015-7504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7504 [ 34 ] CVE-2015-7812 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7812 [ 35 ] CVE-2015-7813 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7813 [ 36 ] CVE-2015-7814 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7814 [ 37 ] CVE-2015-7835 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7835 [ 38 ] CVE-2015-7871 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7871 [ 39 ] CVE-2015-7969 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7969 [ 40 ] CVE-2015-7970 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7970 [ 41 ] CVE-2015-7971 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7971 [ 42 ] CVE-2015-7972 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7972 [ 43 ] CVE-2015-8339 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8339 [ 44 ] CVE-2015-8340 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8340 [ 45 ] CVE-2015-8341 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8341 [ 46 ] CVE-2015-8550 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8550 [ 47 ] CVE-2015-8551 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8551 [ 48 ] CVE-2015-8552 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8552 [ 49 ] CVE-2015-8554 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8554 [ 50 ] CVE-2015-8555 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8555 [ 51 ] CVE-2016-2270 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2270 [ 52 ] CVE-2016-2271 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2271

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    https://security.gentoo.org/glsa/201604-03

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2016 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5

    --roWGDR0oQEDLX1s6lNAQV7ISgI2Pjo8Pc . ============================================================================ Ubuntu Security Notice USN-2630-1 June 10, 2015

    qemu, qemu-kvm vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 15.04
    • Ubuntu 14.10
    • Ubuntu 14.04 LTS
    • Ubuntu 12.04 LTS

    Summary:

    Several security issues were fixed in QEMU.

    Software Description: - qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer

    Details:

    Matt Tait discovered that QEMU incorrectly handled the virtual PCNET driver. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. (CVE-2015-3209)

    Kurt Seifried discovered that QEMU incorrectly handled certain temporary files. A local attacker could use this issue to cause a denial of service. (CVE-2015-4037)

    Jan Beulich discovered that the QEMU Xen code incorrectly restricted write access to the host MSI message data field. A malicious guest could use this issue to cause a denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4103)

    Jan Beulich discovered that the QEMU Xen code incorrectly restricted access to the PCI MSI mask bits. A malicious guest could use this issue to cause a denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4104)

    Jan Beulich discovered that the QEMU Xen code incorrectly handled MSI-X error messages. A malicious guest could use this issue to cause a denial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4105)

    Jan Beulich discovered that the QEMU Xen code incorrectly restricted write access to the PCI config space. A malicious guest could use this issue to cause a denial of service, obtain sensitive information, or possibly execute arbitrary code. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4106)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 15.04: qemu-system 1:2.2+dfsg-5expubuntu9.2 qemu-system-aarch64 1:2.2+dfsg-5expubuntu9.2 qemu-system-arm 1:2.2+dfsg-5expubuntu9.2 qemu-system-mips 1:2.2+dfsg-5expubuntu9.2 qemu-system-misc 1:2.2+dfsg-5expubuntu9.2 qemu-system-ppc 1:2.2+dfsg-5expubuntu9.2 qemu-system-sparc 1:2.2+dfsg-5expubuntu9.2 qemu-system-x86 1:2.2+dfsg-5expubuntu9.2

    Ubuntu 14.10: qemu-system 2.1+dfsg-4ubuntu6.7 qemu-system-aarch64 2.1+dfsg-4ubuntu6.7 qemu-system-arm 2.1+dfsg-4ubuntu6.7 qemu-system-mips 2.1+dfsg-4ubuntu6.7 qemu-system-misc 2.1+dfsg-4ubuntu6.7 qemu-system-ppc 2.1+dfsg-4ubuntu6.7 qemu-system-sparc 2.1+dfsg-4ubuntu6.7 qemu-system-x86 2.1+dfsg-4ubuntu6.7

    Ubuntu 14.04 LTS: qemu-system 2.0.0+dfsg-2ubuntu1.13 qemu-system-aarch64 2.0.0+dfsg-2ubuntu1.13 qemu-system-arm 2.0.0+dfsg-2ubuntu1.13 qemu-system-mips 2.0.0+dfsg-2ubuntu1.13 qemu-system-misc 2.0.0+dfsg-2ubuntu1.13 qemu-system-ppc 2.0.0+dfsg-2ubuntu1.13 qemu-system-sparc 2.0.0+dfsg-2ubuntu1.13 qemu-system-x86 2.0.0+dfsg-2ubuntu1.13

    Ubuntu 12.04 LTS: qemu-kvm 1.0+noroms-0ubuntu14.23

    After a standard system update you need to restart all QEMU virtual machines to make all the necessary changes.

    http://creativecommons.org/licenses/by-sa/2.5

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.15"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.10"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "22"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.12"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.13"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "15.1"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "15.04"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "21"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.14"
          },
          {
            "_id": null,
            "model": "qemu",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "qemu",
            "version": "2.3.1"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "20"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux enterprise debuginfo",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xensource",
            "version": "4.2.x"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xensource",
            "version": "4.3.x"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xensource",
            "version": "4.4.x"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "15.1"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3209"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "132447"
          },
          {
            "db": "PACKETSTORM",
            "id": "132242"
          }
        ],
        "trust": 0.2
      },
      "cve": "CVE-2015-3209",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2015-3209",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2015-03820",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-81170",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-3209",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2015-03820",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201506-282",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-81170",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3209"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute arbitrary code by sending a packet with TXSTATUS_STARTPACKET set and then a crafted packet with TXSTATUS_DEVICEOWNS set. Xen is a virtualization technology for the Linux kernel that allows multiple operating systems to run simultaneously. QEMU (also known as Quick Emulator) is a set of analog processor software developed by French programmer Fabrice Bellard. The software has the characteristics of fast speed and cross-platform. 5 client) - x86_64\nRHEL Virtualization (v. 5 server) - x86_64\n\n3. Note: The procedure in\nthe Solution section must be performed before this update will take effect. \n\n2) Either reboot the hypervisor machine or, as the root user, remove (using\n\"modprobe -r [module]\") and reload (using \"modprobe [module]\") all of the\nfollowing modules which are currently running (determined using \"lsmod\"):\nkvm, ksm, kvm-intel or kvm-amd. 5 client):\n\nSource:\nkvm-83-273.el5_11.src.rpm\n\nx86_64:\nkmod-kvm-83-273.el5_11.x86_64.rpm\nkmod-kvm-debug-83-273.el5_11.x86_64.rpm\nkvm-83-273.el5_11.x86_64.rpm\nkvm-debuginfo-83-273.el5_11.x86_64.rpm\nkvm-qemu-img-83-273.el5_11.x86_64.rpm\nkvm-tools-83-273.el5_11.x86_64.rpm\n\nRHEL Virtualization (v. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: qemu-kvm security update\nAdvisory ID:       RHSA-2015:1087-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2015-1087.html\nIssue date:        2015-06-10\nCVE Names:         CVE-2015-3209 \n=====================================================================\n\n1. Summary:\n\nUpdated qemu-kvm packages that fix one security issue are now available for\nRed Hat Enterprise Linux 6. \n\nRed Hat Product Security has rated this update as having Important security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\n\n3. Description:\n\nKVM (Kernel-based Virtual Machine) is a full virtualization solution for\nLinux on AMD64 and Intel 64 systems. The qemu-kvm package provides the\nuser-space component for running virtual machines using KVM. \n\nA flaw was found in the way QEMU\u0027s AMD PCnet Ethernet emulation handled\nmulti-TMD packets with a length above 4096 bytes. (CVE-2015-3209)\n\nRed Hat would like to thank Matt Tait of Google\u0027s Project Zero security\nteam for reporting this issue. \n\nAll qemu-kvm users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. After installing this\nupdate, shut down all running virtual machines. Once all virtual machines\nhave shut down, start them again for this update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1225882 - CVE-2015-3209 qemu: pcnet: multi-tmd buffer overflow in the tx path\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nqemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm\n\ni386:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.i686.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.i686.rpm\n\nx86_64:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nqemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm\n\nx86_64:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nqemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm\n\ni386:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.i686.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.i686.rpm\n\nx86_64:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nqemu-kvm-0.12.1.2-2.448.el6_6.4.src.rpm\n\ni386:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.i686.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.i686.rpm\n\nx86_64:\nqemu-guest-agent-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-img-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.4.x86_64.rpm\nqemu-kvm-tools-0.12.1.2-2.448.el6_6.4.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2015-3209\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFVeHRmXlSAg2UNWIIRAkq5AKCeYGr9MG7Kdic1FVJZw2avAhO6eACdFG0W\nVCkW3jIuuaxOqeYM0s8u6ss=\n=+WsT\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nCVE-2015-4037\n\n    Kurt Seifried of Red Hat Product Security discovered that QEMU\u0027s\n    user mode networking stack uses predictable temporary file names\n    when the -smb option is used. \n\nCVE-2015-4163\n\n    Jan Beulich discovered that a missing version check in the\n    GNTTABOP_swap_grant_ref hypercall handler may result in denial of service. \n    This only applies to Debian stable/jessie. \n\nCVE-2015-4164\n\n    Andrew Cooper discovered a vulnerability in the iret hypercall handler,\n    which may result in denial of service. \n\nFor the oldstable distribution (wheezy), these problems have been fixed\nin version 4.1.4-3+deb7u8. \n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 4.4.1-9+deb8u1. CVE-2015-3209, CVE-2015-4103, CVE-2015-4104,\nCVE-2015-4105 and CVE-2015-4106 don\u0027t affect the Xen package in stable\njessie, it uses the standard qemu package and has already been fixed in\nDSA-3284-1. \n\nFor the unstable distribution (sid), these problems will be fixed soon. \n\nWe recommend that you upgrade your xen packages. From: Yury German \u003cblueknight@gentoo.org\u003e\nTo: gentoo-announce@lists.gentoo.org\nMessage-ID: \u003c57035F2D.8090108@gentoo.org\u003e\nSubject: [ GLSA 201604-03 ] Xen: Multiple vulnerabilities\n\n\n\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201604-03\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Normal\n    Title: Xen: Multiple vulnerabilities\n     Date: April 05, 2016\n     Bugs: #445254, #513832, #547202, #549200, #549950, #550658,\n           #553664, #553718, #555532, #556304, #561110, #564472,\n           #564932, #566798, #566838, #566842, #567962, #571552,\n           #571556, #574012\n       ID: 201604-03\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in Xen, the worst of which\ncause a Denial of Service. \n\nBackground\n==========\n\nXen is a bare-metal hypervisor. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package              /     Vulnerable     /            Unaffected\n    -------------------------------------------------------------------\n  1  app-emulation/xen           \u003c 4.6.0-r9               \u003e= 4.6.0-r9\n                                                         *\u003e= 4.5.2-r5\n  2  app-emulation/xen-pvgrub\n                                  \u003c 4.6.0                  Vulnerable!\n  3  app-emulation/xen-tools     \u003c 4.6.0-r9               \u003e= 4.6.0-r9\n                                                         *\u003e= 4.5.2-r5\n  4  app-emulation/pvgrub                                    \u003e= 4.6.0\n                                                            *\u003e= 4.5.2\n    -------------------------------------------------------------------\n     NOTE: Certain packages are still vulnerable. Users should migrate\n           to another package if one is available or wait for the\n           existing packages to be marked stable by their\n           architecture maintainers. \n    -------------------------------------------------------------------\n     4 affected packages\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in Xen. Please review the\nCVE identifiers referenced below for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll Xen 4.5 users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=app-emulation/xen-4.5.2-r5\"\n\nAll Xen 4.6 users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=app-emulation/xen-4.6.0-r9\"\n\nAll Xen tools 4.5 users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot -v \"\u003e=app-emulation/xen-tools-4.5.2-r5\"\n\nAll Xen tools 4.6 users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot -v \"\u003e=app-emulation/xen-tools-4.6.0-r9\"\n\nAll Xen pvgrub users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=app-emulation/xen-pvgrub-4.6.0\"=\n\n\nReferences\n==========\n\n[  1 ] CVE-2012-3494\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3494\n[  2 ] CVE-2012-3495\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3495\n[  3 ] CVE-2012-3496\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3496\n[  4 ] CVE-2012-3497\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3497\n[  5 ] CVE-2012-3498\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3498\n[  6 ] CVE-2012-3515\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-3515\n[  7 ] CVE-2012-4411\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4411\n[  8 ] CVE-2012-4535\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4535\n[  9 ] CVE-2012-4536\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4536\n[ 10 ] CVE-2012-4537\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4537\n[ 11 ] CVE-2012-4538\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4538\n[ 12 ] CVE-2012-4539\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4539\n[ 13 ] CVE-2012-6030\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6030\n[ 14 ] CVE-2012-6031\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6031\n[ 15 ] CVE-2012-6032\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6032\n[ 16 ] CVE-2012-6033\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6033\n[ 17 ] CVE-2012-6034\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6034\n[ 18 ] CVE-2012-6035\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6035\n[ 19 ] CVE-2012-6036\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-6036\n[ 20 ] CVE-2015-2151\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2151\n[ 21 ] CVE-2015-3209\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3209\n[ 22 ] CVE-2015-3259\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3259\n[ 23 ] CVE-2015-3340\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3340\n[ 24 ] CVE-2015-3456\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3456\n[ 25 ] CVE-2015-4103\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4103\n[ 26 ] CVE-2015-4104\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4104\n[ 27 ] CVE-2015-4105\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4105\n[ 28 ] CVE-2015-4106\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4106\n[ 29 ] CVE-2015-4163\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4163\n[ 30 ] CVE-2015-4164\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4164\n[ 31 ] CVE-2015-5154\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5154\n[ 32 ] CVE-2015-7311\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7311\n[ 33 ] CVE-2015-7504\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7504\n[ 34 ] CVE-2015-7812\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7812\n[ 35 ] CVE-2015-7813\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7813\n[ 36 ] CVE-2015-7814\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7814\n[ 37 ] CVE-2015-7835\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7835\n[ 38 ] CVE-2015-7871\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7871\n[ 39 ] CVE-2015-7969\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7969\n[ 40 ] CVE-2015-7970\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7970\n[ 41 ] CVE-2015-7971\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7971\n[ 42 ] CVE-2015-7972\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7972\n[ 43 ] CVE-2015-8339\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8339\n[ 44 ] CVE-2015-8340\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8340\n[ 45 ] CVE-2015-8341\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8341\n[ 46 ] CVE-2015-8550\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8550\n[ 47 ] CVE-2015-8551\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8551\n[ 48 ] CVE-2015-8552\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8552\n[ 49 ] CVE-2015-8554\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8554\n[ 50 ] CVE-2015-8555\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8555\n[ 51 ] CVE-2016-2270\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2270\n[ 52 ] CVE-2016-2271\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2271\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/201604-03\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2016 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n\n\n\n--roWGDR0oQEDLX1s6lNAQV7ISgI2Pjo8Pc\n. ============================================================================\nUbuntu Security Notice USN-2630-1\nJune 10, 2015\n\nqemu, qemu-kvm vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 15.04\n- Ubuntu 14.10\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in QEMU. \n\nSoftware Description:\n- qemu: Machine emulator and virtualizer\n- qemu-kvm: Machine emulator and virtualizer\n\nDetails:\n\nMatt Tait discovered that QEMU incorrectly handled the virtual PCNET\ndriver. In the default installation, when QEMU is used with\nlibvirt, attackers would be isolated by the libvirt AppArmor profile. \n(CVE-2015-3209)\n\nKurt Seifried discovered that QEMU incorrectly handled certain temporary\nfiles. A local attacker could use this issue to cause a denial of service. \n(CVE-2015-4037)\n\nJan Beulich discovered that the QEMU Xen code incorrectly restricted write\naccess to the host MSI message data field. A malicious guest could use this\nissue to cause a denial of service. This issue only applied to Ubuntu 14.04\nLTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-4103)\n\nJan Beulich discovered that the QEMU Xen code incorrectly restricted access\nto the PCI MSI mask bits. A malicious guest could use this issue to cause a\ndenial of service. This issue only applied to Ubuntu 14.04 LTS, Ubuntu\n14.10 and Ubuntu 15.04. (CVE-2015-4104)\n\nJan Beulich discovered that the QEMU Xen code incorrectly handled MSI-X\nerror messages. A malicious guest could use this issue to cause a denial of\nservice. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 14.10 and\nUbuntu 15.04. (CVE-2015-4105)\n\nJan Beulich discovered that the QEMU Xen code incorrectly restricted write\naccess to the PCI config space. A malicious guest could use this issue to\ncause a denial of service, obtain sensitive information, or possibly\nexecute arbitrary code. This issue only applied to Ubuntu 14.04 LTS,\nUbuntu 14.10 and Ubuntu 15.04. (CVE-2015-4106)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 15.04:\n  qemu-system                     1:2.2+dfsg-5expubuntu9.2\n  qemu-system-aarch64             1:2.2+dfsg-5expubuntu9.2\n  qemu-system-arm                 1:2.2+dfsg-5expubuntu9.2\n  qemu-system-mips                1:2.2+dfsg-5expubuntu9.2\n  qemu-system-misc                1:2.2+dfsg-5expubuntu9.2\n  qemu-system-ppc                 1:2.2+dfsg-5expubuntu9.2\n  qemu-system-sparc               1:2.2+dfsg-5expubuntu9.2\n  qemu-system-x86                 1:2.2+dfsg-5expubuntu9.2\n\nUbuntu 14.10:\n  qemu-system                     2.1+dfsg-4ubuntu6.7\n  qemu-system-aarch64             2.1+dfsg-4ubuntu6.7\n  qemu-system-arm                 2.1+dfsg-4ubuntu6.7\n  qemu-system-mips                2.1+dfsg-4ubuntu6.7\n  qemu-system-misc                2.1+dfsg-4ubuntu6.7\n  qemu-system-ppc                 2.1+dfsg-4ubuntu6.7\n  qemu-system-sparc               2.1+dfsg-4ubuntu6.7\n  qemu-system-x86                 2.1+dfsg-4ubuntu6.7\n\nUbuntu 14.04 LTS:\n  qemu-system                     2.0.0+dfsg-2ubuntu1.13\n  qemu-system-aarch64             2.0.0+dfsg-2ubuntu1.13\n  qemu-system-arm                 2.0.0+dfsg-2ubuntu1.13\n  qemu-system-mips                2.0.0+dfsg-2ubuntu1.13\n  qemu-system-misc                2.0.0+dfsg-2ubuntu1.13\n  qemu-system-ppc                 2.0.0+dfsg-2ubuntu1.13\n  qemu-system-sparc               2.0.0+dfsg-2ubuntu1.13\n  qemu-system-x86                 2.0.0+dfsg-2ubuntu1.13\n\nUbuntu 12.04 LTS:\n  qemu-kvm                        1.0+noroms-0ubuntu14.23\n\nAfter a standard system update you need to restart all QEMU virtual\nmachines to make all the necessary changes. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-3209"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170"
          },
          {
            "db": "PACKETSTORM",
            "id": "132447"
          },
          {
            "db": "PACKETSTORM",
            "id": "132242"
          },
          {
            "db": "PACKETSTORM",
            "id": "132289"
          },
          {
            "db": "PACKETSTORM",
            "id": "132290"
          },
          {
            "db": "PACKETSTORM",
            "id": "136587"
          },
          {
            "db": "PACKETSTORM",
            "id": "132251"
          },
          {
            "db": "PACKETSTORM",
            "id": "134165"
          }
        ],
        "trust": 2.16
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-3209",
            "trust": 3.0
          },
          {
            "db": "BID",
            "id": "75123",
            "trust": 2.3
          },
          {
            "db": "SECTRACK",
            "id": "1032545",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10783",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10698",
            "trust": 1.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282",
            "trust": 0.7
          },
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "132290",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "134165",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "132289",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "132447",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "132242",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "132251",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "132240",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132241",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "136587",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170"
          },
          {
            "db": "PACKETSTORM",
            "id": "132447"
          },
          {
            "db": "PACKETSTORM",
            "id": "132242"
          },
          {
            "db": "PACKETSTORM",
            "id": "132289"
          },
          {
            "db": "PACKETSTORM",
            "id": "132290"
          },
          {
            "db": "PACKETSTORM",
            "id": "136587"
          },
          {
            "db": "PACKETSTORM",
            "id": "132251"
          },
          {
            "db": "PACKETSTORM",
            "id": "134165"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3209"
          }
        ]
      },
      "id": "VAR-201506-0038",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170"
          }
        ],
        "trust": 0.06999999999999999
      },
      "iot_taxonomy": {
        "_id": null,
        "data": [
          {
            "category": [
              "Network device"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          }
        ]
      },
      "last_update_date": "2026-04-10T23:32:30.204000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Xen QEMU PCNET Controller Heap Overflow Vulnerability Patch",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/59683"
          },
          {
            "title": "xsa135-qemut-1",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56387"
          },
          {
            "title": "xsa135-qemuu-4.2-2",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56391"
          },
          {
            "title": "xsa135-qemuu-4.5-2",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56395"
          },
          {
            "title": "xsa135-qemuu-4.2-1",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56390"
          },
          {
            "title": "xsa135-qemuu-4.5-1",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56394"
          },
          {
            "title": "xsa135-qemuu-unstable",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56389"
          },
          {
            "title": "xsa135-qemuu-4.3-2",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56393"
          },
          {
            "title": "xsa135-qemut-2",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56388"
          },
          {
            "title": "xsa135-qemuu-4.3-1",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=56392"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-119",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-81170"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3209"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.3,
            "url": "http://xenbits.xen.org/xsa/advisory-135.html"
          },
          {
            "trust": 1.8,
            "url": "https://security.gentoo.org/glsa/201510-02"
          },
          {
            "trust": 1.8,
            "url": "https://security.gentoo.org/glsa/201604-03"
          },
          {
            "trust": 1.8,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1087.html"
          },
          {
            "trust": 1.8,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1189.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.ubuntu.com/usn/usn-2630-1"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1032545"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/75123"
          },
          {
            "trust": 1.7,
            "url": "http://www.debian.org/security/2015/dsa-3284"
          },
          {
            "trust": 1.7,
            "url": "http://www.debian.org/security/2015/dsa-3285"
          },
          {
            "trust": 1.7,
            "url": "http://www.debian.org/security/2015/dsa-3286"
          },
          {
            "trust": 1.7,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-june/160669.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-june/160685.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-june/160677.html"
          },
          {
            "trust": 1.7,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1088.html"
          },
          {
            "trust": 1.7,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1089.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00027.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00014.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00020.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00015.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00027.html"
          },
          {
            "trust": 1.7,
            "url": "https://kb.juniper.net/jsa10783"
          },
          {
            "trust": 1.7,
            "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13"
          },
          {
            "trust": 1.6,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10698"
          },
          {
            "trust": 0.8,
            "url": "https://access.redhat.com/security/cve/cve-2015-3209"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3209"
          },
          {
            "trust": 0.6,
            "url": "https://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-3209"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2015:1189"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2015:1088"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2015:1089"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2015:1087"
          },
          {
            "trust": 0.6,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1225882"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4105"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4103"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4106"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4104"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.2,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4037"
          },
          {
            "trust": 0.2,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.2,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.2,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5154"
          },
          {
            "trust": 0.2,
            "url": "https://security.gentoo.org/"
          },
          {
            "trust": 0.2,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.2,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3209"
          },
          {
            "trust": 0.2,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10698"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4164"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4163"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4536"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7504"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4535"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4105"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4535"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6030"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7835"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8551"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4538"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8552"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6036"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6036"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7814"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4106"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7970"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8550"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3456"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3497"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4536"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3495"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6031"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4537"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6034"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3259"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3340"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-2151"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4411"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7972"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4538"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6035"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3495"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4539"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3494"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7871"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6033"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6032"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4537"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6035"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6032"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7813"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3515"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7971"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3498"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-2270"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6031"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6030"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3498"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3497"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3494"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8555"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4163"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8340"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7311"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3259"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-2151"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8339"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-6033"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8554"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-4411"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-6034"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8341"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-4539"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3340"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4164"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3515"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4103"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-3496"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3456"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7969"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4104"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-3496"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-2271"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7812"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu/2.1+dfsg-4ubuntu6.7"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu-kvm/1.0+noroms-0ubuntu14.23"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.13"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu/1:2.2+dfsg-5expubuntu9.2"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3214"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5154"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3214"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5158"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5158"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170"
          },
          {
            "db": "PACKETSTORM",
            "id": "132447"
          },
          {
            "db": "PACKETSTORM",
            "id": "132242"
          },
          {
            "db": "PACKETSTORM",
            "id": "132289"
          },
          {
            "db": "PACKETSTORM",
            "id": "132290"
          },
          {
            "db": "PACKETSTORM",
            "id": "136587"
          },
          {
            "db": "PACKETSTORM",
            "id": "132251"
          },
          {
            "db": "PACKETSTORM",
            "id": "134165"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3209"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-81170",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132447",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132242",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132289",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132290",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "136587",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132251",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "134165",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3209",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-06-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2015-03820",
            "ident": null
          },
          {
            "date": "2015-06-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-81170",
            "ident": null
          },
          {
            "date": "2015-06-25T14:19:06",
            "db": "PACKETSTORM",
            "id": "132447",
            "ident": null
          },
          {
            "date": "2015-06-10T23:39:22",
            "db": "PACKETSTORM",
            "id": "132242",
            "ident": null
          },
          {
            "date": "2015-06-15T15:43:00",
            "db": "PACKETSTORM",
            "id": "132289",
            "ident": null
          },
          {
            "date": "2015-06-15T15:43:07",
            "db": "PACKETSTORM",
            "id": "132290",
            "ident": null
          },
          {
            "date": "2016-04-06T13:30:13",
            "db": "PACKETSTORM",
            "id": "136587",
            "ident": null
          },
          {
            "date": "2015-06-10T23:41:07",
            "db": "PACKETSTORM",
            "id": "132251",
            "ident": null
          },
          {
            "date": "2015-11-02T16:49:11",
            "db": "PACKETSTORM",
            "id": "134165",
            "ident": null
          },
          {
            "date": "2015-06-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201506-282",
            "ident": null
          },
          {
            "date": "2015-06-15T15:59:00.070000",
            "db": "NVD",
            "id": "CVE-2015-3209",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-06-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2015-03820",
            "ident": null
          },
          {
            "date": "2023-02-13T00:00:00",
            "db": "VULHUB",
            "id": "VHN-81170",
            "ident": null
          },
          {
            "date": "2023-04-10T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201506-282",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-3209",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Xen QEMU PCNET Controller Heap Overflow Vulnerability",
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-03820"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "_id": null,
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201506-282"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201109-0200

    Vulnerability from variot - Updated: 2026-04-10 23:30

    Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to unload event handling. Used in multiple products Webkit There is a service disruption (DoS) There are vulnerabilities that can be in a state or are otherwise unaffected.Service disruption by a third party (DoS) You may be put into a state or affected by other details. Google Chrome is prone to multiple vulnerabilities. Attackers can exploit these issues to execute arbitrary code in the context of the browser, cause denial-of-service conditions, perform spoofing attacks, and bypass the same-origin policy; other attacks may also be possible. Versions prior to Chrome 14.0.835.163 are vulnerable. Google Chrome is a web browser developed by Google (Google). These could be used in a malicious web site to direct the user to a spoofed site that visually appears to be a legitimate domain. This issue is addressed through an improved domain name validity check. This issue does not affect OS X systems. Third-party websites could set cookies if the "Block Cookies" preference in Safari was set to the default setting of "From third parties and advertisers". CVE-ID CVE-2012-0640 : nshah

    WebKit Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.3, OS X Lion Server v10.7.3, Windows 7, Vista, XP SP2 or later Impact: HTTP authentication credentials may be inadvertently disclosed to another site Description: If a site uses HTTP authentication and redirects to another site, the authentication credentials may be sent to the other site. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    APPLE-SA-2012-03-07-2 iOS 5.1 Software Update

    iOS 5.1 Software Update is now available and addresses the following:

    CFNetwork Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Visiting a maliciously crafted website may lead to the disclosure of sensitive information Description: An issue existed in CFNetwork's handling of malformed URLs. When accessing a maliciously crafted URL, CFNetwork could send unexpected request headers. CVE-ID CVE-2012-0641 : Erling Ellingsen of Facebook

    HFS Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Mounting a maliciously crafted disk image may lead to a device shutdown or arbitrary code execution Description: An integer underflow existed with the handling of HFS catalog files. CVE-ID CVE-2012-0642 : pod2g

    Kernel Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: A malicious program could bypass sandbox restrictions Description: A logic issue existed in the handling of debug system calls. This may allow a malicious program to gain code execution in other programs with the same user privileges. CVE-ID CVE-2012-0643 : 2012 iOS Jailbreak Dream Team

    libresolv Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Applications that use the libresolv library may be vulnerable to an unexpected application termination or arbitrary code execution Description: An integer overflow existed in the handling of DNS resource records, which may lead to heap memory corruption. CVE-ID CVE-2011-3453 : Ilja van Sprundel of IOActive

    Passcode Lock Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: A person with physical access to the device may be able to bypass the screen lock Description: A race condition issue existed in the handling of slide to dial gestures. This may allow a person with physical access to the device to bypass the Passcode Lock screen. CVE-ID CVE-2012-0644 : Roland Kohler of the German Federal Ministry of Economics and Technology

    Safari Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Web page visits may be recorded in browser history even when Private Browsing is active Description: Safari's Private Browsing is designed to prevent recording of a browsing session. Pages visited as a result of a site using the JavaScript methods pushState or replaceState were recorded in the browser history even when Private Browsing mode was active. This issue is addressed by not recording such visits when Private Browsing is active. CVE-ID CVE-2012-0585 : Eric Melville of American Express

    Siri Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: An attacker with physical access to a locked phone could get access to frontmost email message Description: A design issue existed in Siri's lock screen restrictions. If Siri was enabled for use on the lock screen, and Mail was open with a message selected behind the lock screen, a voice command could be used to send that message to an arbitrary recipient. This issue is addressed by disabling forwarding of active messages from the lock screen. CVE-ID CVE-2012-0645

    VPN Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: A maliciously crafted system configuration file may lead to arbitrary code execution with system privileges Description: A format string vulnerability existed in the handling of racoon configuration files. CVE-ID CVE-2012-0646 : pod2g

    WebKit Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Visiting a maliciously crafted website may lead to the disclosure of cookies Description: A cross-origin issue existed in WebKit, which may allow cookies to be disclosed across origins. CVE-ID CVE-2011-3887 : Sergey Glazunov

    WebKit Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Visiting a maliciously crafted website and dragging content with the mouse may lead to a cross-site scripting attack Description: A cross-origin issue existed in WebKit, which may allow content to be dragged and dropped across origins. CVE-ID CVE-2012-0590 : Adam Barth of Google Chrome Security Team

    WebKit Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Visiting a maliciously crafted website may lead to a cross- site scripting attack Description: Multiple cross-origin issues existed in WebKit. CVE-ID CVE-2011-3881 : Sergey Glazunov CVE-2012-0586 : Sergey Glazunov CVE-2012-0587 : Sergey Glazunov CVE-2012-0588 : Jochen Eisinger of Google Chrome Team CVE-2012-0589 : Alan Austin of polyvore.com

    WebKit Available for: iPhone 3GS, iPhone 4, iPhone 4S, iPod touch (3rd generation) and later, iPad, iPad 2 Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues existed in WebKit. CVE-ID CVE-2011-2825 : wushi of team509 working with TippingPoint's Zero Day Initiative CVE-2011-2833 : Apple CVE-2011-2846 : Arthur Gerkis, miaubiz CVE-2011-2847 : miaubiz, Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2854 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2855 : Arthur Gerkis, wushi of team509 working with iDefense VCP CVE-2011-2857 : miaubiz CVE-2011-2860 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2867 : Dirk Schulze CVE-2011-2868 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2869 : Cris Neckar of Google Chrome Security Team using AddressSanitizer CVE-2011-2870 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2871 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2872 : Abhishek Arya (Inferno) and Cris Neckar of Google Chrome Security Team using AddressSanitizer CVE-2011-2873 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2011-2877 : miaubiz CVE-2011-3885 : miaubiz CVE-2011-3888 : miaubiz CVE-2011-3897 : pa_kt working with TippingPoint's Zero Day Initiative CVE-2011-3908 : Aki Helin of OUSPG CVE-2011-3909 : Google Chrome Security Team (scarybeasts) and Chu CVE-2011-3928 : wushi of team509 working with TippingPoint's Zero Day Initiative CVE-2012-0591 : miaubiz, and Martin Barbella CVE-2012-0592 : Alexander Gavrun working with TippingPoint's Zero Day Initiative CVE-2012-0593 : Lei Zhang of the Chromium development community CVE-2012-0594 : Adam Klein of the Chromium development community CVE-2012-0595 : Apple CVE-2012-0596 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0597 : miaubiz CVE-2012-0598 : Sergey Glazunov CVE-2012-0599 : Dmytro Gorbunov of SaveSources.com CVE-2012-0600 : Marshall Greenblatt, Dharani Govindan of Google Chrome, miaubiz, Aki Helin of OUSPG, Apple CVE-2012-0601 : Apple CVE-2012-0602 : Apple CVE-2012-0603 : Apple CVE-2012-0604 : Apple CVE-2012-0605 : Apple CVE-2012-0606 : Apple CVE-2012-0607 : Apple CVE-2012-0608 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0609 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0610 : miaubiz, Martin Barbella using AddressSanitizer CVE-2012-0611 : Martin Barbella using AddressSanitizer CVE-2012-0612 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0613 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0614 : miaubiz, Martin Barbella using AddressSanitizer CVE-2012-0615 : Martin Barbella using AddressSanitizer CVE-2012-0616 : miaubiz CVE-2012-0617 : Martin Barbella using AddressSanitizer CVE-2012-0618 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0619 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0620 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0621 : Martin Barbella using AddressSanitizer CVE-2012-0622 : Dave Levin and Abhishek Arya of the Google Chrome Security Team CVE-2012-0623 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0624 : Martin Barbella using AddressSanitizer CVE-2012-0625 : Martin Barbella CVE-2012-0626 : Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0627 : Apple CVE-2012-0628 : Slawomir Blazek, miaubiz, Abhishek Arya (Inferno) of Google Chrome Security Team using AddressSanitizer CVE-2012-0629 : Abhishek Arya (Inferno) of Google Chrome Security Team CVE-2012-0630 : Sergio Villar Senin of Igalia CVE-2012-0631 : Abhishek Arya (Inferno) of Google Chrome Security Team CVE-2012-0632 : Cris Neckar of the Google Chrome Security Team using AddressSanitizer CVE-2012-0633 : Apple CVE-2012-0635 : Julien Chaffraix of the Chromium development community, Martin Barbella using AddressSanitizer

    Installation note:

    This update is only available through iTunes, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from www.apple.com/itunes/

    iTunes will automatically check Apple's update server on its weekly schedule. When an update is detected, it will download it. When the iPhone, iPod touch or iPad is docked, iTunes will present the user with the option to install the update. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iPhone, iPod touch, or iPad.

    The automatic update process may take up to a week depending on the day that iTunes checks for updates. You may manually obtain the update via the Check for Updates button within iTunes. After doing this, the update can be applied when your iPhone, iPod touch, or iPad is docked to your computer.

    To check that the iPhone, iPod touch, or iPad has been updated:

    • Navigate to Settings
    • Select General
    • Select About. The version after applying this update will be "5.1".

    Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/

    -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin)

    iQEcBAEBAgAGBQJPV6M3AAoJEGnF2JsdZQeef/cIAKBSn0czLzJO9fu6ZyjLRvxq 4pIZgfyEVGBzpn+9IeiGFTkkVf+bOsA+Q3RlcsG5g0RlbyFgnuWu59HHsnkrElbM bCfnnTF5eYZX/3fnLzxpX7BUsEona3nf1gHfR24OeEn36C8rZ6rZJfMLqCJNNZGY RDSga1oeMN/AbgZuR9sYKudkE0GOmkLZfR2G4WXmrU+JncR6XoROUwoJBPhg8z90 HAxgDEbduuLLOSe7CHLS3apbh0L2tmxPCWpiBmEMg6PTlFF0HhJQJ0wusrUc8nX6 7TDsAho73wCOpChzBGQeemc6+UEN2uDmUgwVkN6n4D/qN1u6E+d3coUXOlb8hIY= =qPeE -----END PGP SIGNATURE----- . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201111-01


                                            http://security.gentoo.org/
    

    Severity: High Title: Chromium, V8: Multiple vulnerabilities Date: November 01, 2011 Bugs: #351525, #353626, #354121, #356933, #357963, #358581, #360399, #363629, #365125, #366335, #367013, #368649, #370481, #373451, #373469, #377475, #377629, #380311, #380897, #381713, #383251, #385649, #388461 ID: 201111-01


    Synopsis

    Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code and local root privilege escalation.

    Background

    Chromium is an open-source web browser project. V8 is Google's open source JavaScript engine.

    Affected packages

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
    

    1 www-client/chromium < 15.0.874.102 >= 15.0.874.102 2 dev-lang/v8 < 3.5.10.22 >= 3.5.10.22 ------------------------------------------------------------------- 2 affected packages -------------------------------------------------------------------

    Description

    Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details.

    Impact

    A local attacker could gain root privileges (CVE-2011-1444, fixed in chromium-11.0.696.57).

    A context-dependent attacker could entice a user to open a specially crafted web site or JavaScript program using Chromium or V8, possibly resulting in the execution of arbitrary code with the privileges of the process, or a Denial of Service condition.

    Workaround

    There is no known workaround at this time.

    Resolution

    All Chromium users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot -v ">=www-client/chromium-15.0.874.102"

    All V8 users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=dev-lang/v8-3.5.10.22"

    References

    [ 1 ] CVE-2011-2345 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2345 [ 2 ] CVE-2011-2346 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2346 [ 3 ] CVE-2011-2347 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2347 [ 4 ] CVE-2011-2348 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2348 [ 5 ] CVE-2011-2349 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2349 [ 6 ] CVE-2011-2350 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2350 [ 7 ] CVE-2011-2351 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2351 [ 8 ] CVE-2011-2834 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2834 [ 9 ] CVE-2011-2835 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2835 [ 10 ] CVE-2011-2837 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2837 [ 11 ] CVE-2011-2838 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2838 [ 12 ] CVE-2011-2839 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2839 [ 13 ] CVE-2011-2840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2840 [ 14 ] CVE-2011-2841 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2841 [ 15 ] CVE-2011-2843 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2843 [ 16 ] CVE-2011-2844 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2844 [ 17 ] CVE-2011-2845 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2845 [ 18 ] CVE-2011-2846 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2846 [ 19 ] CVE-2011-2847 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2847 [ 20 ] CVE-2011-2848 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2848 [ 21 ] CVE-2011-2849 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2849 [ 22 ] CVE-2011-2850 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2850 [ 23 ] CVE-2011-2851 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2851 [ 24 ] CVE-2011-2852 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2852 [ 25 ] CVE-2011-2853 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2853 [ 26 ] CVE-2011-2854 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2854 [ 27 ] CVE-2011-2855 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2855 [ 28 ] CVE-2011-2856 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2856 [ 29 ] CVE-2011-2857 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2857 [ 30 ] CVE-2011-2858 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2858 [ 31 ] CVE-2011-2859 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2859 [ 32 ] CVE-2011-2860 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2860 [ 33 ] CVE-2011-2861 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2861 [ 34 ] CVE-2011-2862 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2862 [ 35 ] CVE-2011-2864 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2864 [ 36 ] CVE-2011-2874 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2874 [ 37 ] CVE-2011-3234 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3234 [ 38 ] CVE-2011-3873 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3873 [ 39 ] CVE-2011-3875 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3875 [ 40 ] CVE-2011-3876 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3876 [ 41 ] CVE-2011-3877 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3877 [ 42 ] CVE-2011-3878 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3878 [ 43 ] CVE-2011-3879 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3879 [ 44 ] CVE-2011-3880 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3880 [ 45 ] CVE-2011-3881 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3881 [ 46 ] CVE-2011-3882 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3882 [ 47 ] CVE-2011-3883 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3883 [ 48 ] CVE-2011-3884 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3884 [ 49 ] CVE-2011-3885 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3885 [ 50 ] CVE-2011-3886 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3886 [ 51 ] CVE-2011-3887 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3887 [ 52 ] CVE-2011-3888 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3888 [ 53 ] CVE-2011-3889 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3889 [ 54 ] CVE-2011-3890 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3890 [ 55 ] CVE-2011-3891 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3891 [ 56 ] Release Notes 10.0.648.127 http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html [ 57 ] Release Notes 10.0.648.133 http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates.html [ 58 ] Release Notes 10.0.648.205 http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html [ 59 ] Release Notes 11.0.696.57 http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html [ 60 ] Release Notes 11.0.696.65 http://googlechromereleases.blogspot.com/2011/05/beta-and-stable-channel-update.html [ 61 ] Release Notes 11.0.696.68 http://googlechromereleases.blogspot.com/2011/05/stable-channel-update.html [ 62 ] Release Notes 11.0.696.71 http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html [ 63 ] Release Notes 12.0.742.112 http://googlechromereleases.blogspot.com/2011/06/stable-channel-update_28.html [ 64 ] Release Notes 12.0.742.91 http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html [ 65 ] Release Notes 13.0.782.107 http://googlechromereleases.blogspot.com/2011/08/stable-channel-update.html [ 66 ] Release Notes 13.0.782.215 http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html [ 67 ] Release Notes 13.0.782.220 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update.html [ 68 ] Release Notes 14.0.835.163 http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html [ 69 ] Release Notes 14.0.835.202 http://googlechromereleases.blogspot.com/2011/10/stable-channel-update.html [ 70 ] Release Notes 15.0.874.102 http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html [ 71 ] Release Notes 8.0.552.237 http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html [ 72 ] Release Notes 9.0.597.107 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_28.html [ 73 ] Release Notes 9.0.597.84 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html [ 74 ] Release Notes 9.0.597.94 http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-201111-01.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2011 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "chrome",
            "scope": "lt",
            "trust": 1.8,
            "vendor": "google",
            "version": "14.0.835.163"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "lt",
            "trust": 1.8,
            "vendor": "apple",
            "version": "10.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "lt",
            "trust": 1.8,
            "vendor": "apple",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "iphone os",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "google",
            "version": "7.0.530.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "google",
            "version": "7.0.531.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "google",
            "version": "7.0.529.2"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "v10.6.8"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "v10.7.3"
          },
          {
            "_id": null,
            "model": "mac os x server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "v10.6.8"
          },
          {
            "_id": null,
            "model": "mac os x server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "v10.7.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "5.1   (ipad and  ipad 2)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "5.1   (iphone 3gs)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "5.1   (iphone 4)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "5.1   (iphone 4s)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "5.1   (ipod touch (3rd generation) or later )"
          },
          {
            "_id": null,
            "model": "ipad",
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "6.0.472.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "6.0.472.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "6.0.472.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "10.0.629.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "10.0.628.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "10.0.630.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "google",
            "version": "6.0.472.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.5"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.539.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.529.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.203"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.499.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.1"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.213"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.306"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.208"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.18"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.1"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.15"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.127"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.225"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.20"
          },
          {
            "_id": null,
            "model": "esx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.535.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.514.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.107"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.219"
          },
          {
            "_id": null,
            "model": "aura system platform sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.218"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.217"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.27"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.7"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.518.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.38"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "meeting exchange sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.11"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.209"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.226"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.37"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.3"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.531.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.26"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.8"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.7"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.112"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.216"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.344"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.512.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.215"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.200"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2009.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.537.0"
          },
          {
            "_id": null,
            "model": "freeflow print server 73.c0.41",
            "scope": null,
            "trust": 0.3,
            "vendor": "xerox",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.513.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.57"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.2.20"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.303"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.506.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "esxi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.211"
          },
          {
            "_id": null,
            "model": "voice portal sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.104"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop version",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.12"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2011"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.511.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.503.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.521.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.520.0"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.528.0"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.35"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.215"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.31"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.498.0"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.16"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.302"
          },
          {
            "_id": null,
            "model": "messaging storage server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.310"
          },
          {
            "_id": null,
            "model": "messaging storage server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.515.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "esxi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.499.0"
          },
          {
            "_id": null,
            "model": "freeflow print server 73.b3.61",
            "scope": null,
            "trust": 0.3,
            "vendor": "xerox",
            "version": null
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.13"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.511.2"
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.529.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.503.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.24"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.107"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.202"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.42"
          },
          {
            "_id": null,
            "model": "message networking sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.549.0"
          },
          {
            "_id": null,
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.207"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.163"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura system manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.516.0"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "messaging storage server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "esx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.5"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.522.0"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.94"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.223"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.6"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1.8"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.4"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.30"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.204"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.5"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.551.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.128"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.301"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.544.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.500.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.14"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.222"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.21"
          },
          {
            "_id": null,
            "model": "ctpview 7.0r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.12"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "9"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2009.0"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.4"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.112"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.540.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.542.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.510.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.547.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.2"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.9"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2011"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "safari beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "linux lts lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.13"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.551.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.547.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.509.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.4"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.40"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.514.1"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "safari beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.212"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "messaging storage server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ipad",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.206"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.133"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.4"
          },
          {
            "_id": null,
            "model": "esxi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.220"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.101"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.7"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.8"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.0"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.511.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.531.1"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.43"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.300"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.535.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.10"
          },
          {
            "_id": null,
            "model": "aura conferencing sp1 standard",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.541.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.221"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.524.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.102"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.307"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.4"
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.205"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.16"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.204"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.526.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.505.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.497.0"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "aura system platform sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.103"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.224"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.71"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.548.0"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.91"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.9"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.308"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.210"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.550.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.525.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "ios beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.500.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.309"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.214"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.2"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "10"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.201"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.672.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.43"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.504.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.304"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.305"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop workstation client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.237"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.41"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "aura conferencing standard",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "esxi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.205"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "safari for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.538.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.519.0"
          },
          {
            "_id": null,
            "model": "messaging storage server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "49658"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          },
          {
            "db": "NVD",
            "id": "CVE-2011-2846"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:google:chrome",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:iphone_os",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:apple:ipad",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:apple:iphone",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:apple:ipod_touch",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:apple:itunes",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:apple:safari",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Ryan Sleevi of the Chromium development community, electronixtar, wbrana, Michal Zalewski of the Google Security Team, Kostya Serebryany of the Chromium development community, kuzzcc, Mario Gomes, Aaron Sigel of vtty.com, Kostya Serebryany of the Chromium",
        "sources": [
          {
            "db": "BID",
            "id": "49658"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2011-2846",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2011-2846",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-50791",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2011-2846",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2011-2846",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201109-292",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-50791",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-50791"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          },
          {
            "db": "NVD",
            "id": "CVE-2011-2846"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to unload event handling. Used in multiple products Webkit There is a service disruption (DoS) There are vulnerabilities that can be in a state or are otherwise unaffected.Service disruption by a third party (DoS) You may be put into a state or affected by other details. Google Chrome is prone to multiple vulnerabilities. \nAttackers can exploit these issues to execute arbitrary code in the     context of the browser, cause  denial-of-service conditions, perform  spoofing attacks, and bypass the same-origin policy; other  attacks may  also be possible. \nVersions prior to Chrome 14.0.835.163  are vulnerable. Google Chrome is a web browser developed by Google (Google). \nThese could be used in a malicious web site to direct the user to a\nspoofed site that visually appears to be a legitimate domain. This\nissue is addressed through an improved domain name validity check. \nThis issue does not affect OS X systems. Third-party websites could set cookies if the \"Block Cookies\"\npreference in Safari was set to the default setting of \"From third\nparties and advertisers\". \nCVE-ID\nCVE-2012-0640 : nshah\n\nWebKit\nAvailable for:  Mac OS X v10.6.8, Mac OS X Server v10.6.8,\nOS X Lion v10.7.3, OS X Lion Server v10.7.3, Windows 7, Vista,\nXP SP2 or later\nImpact:  HTTP authentication credentials may be inadvertently\ndisclosed to another site\nDescription:  If a site uses HTTP authentication and redirects to\nanother site, the authentication credentials may be sent to the other\nsite. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nAPPLE-SA-2012-03-07-2 iOS 5.1 Software Update\n\niOS 5.1 Software Update is now available and addresses the following:\n\nCFNetwork\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Visiting a maliciously crafted website may lead to the\ndisclosure of sensitive information\nDescription:  An issue existed in CFNetwork\u0027s handling of malformed\nURLs. When accessing a maliciously crafted URL, CFNetwork could send\nunexpected request headers. \nCVE-ID\nCVE-2012-0641 : Erling Ellingsen of Facebook\n\nHFS\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Mounting a maliciously crafted disk image may lead to a\ndevice shutdown or arbitrary code execution\nDescription:  An integer underflow existed with the handling of HFS\ncatalog files. \nCVE-ID\nCVE-2012-0642 : pod2g\n\nKernel\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  A malicious program could bypass sandbox restrictions\nDescription:  A logic issue existed in the handling of debug system\ncalls. This may allow a malicious program to gain code execution in\nother programs with the same user privileges. \nCVE-ID\nCVE-2012-0643 : 2012 iOS Jailbreak Dream Team\n\nlibresolv\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Applications that use the libresolv library may be\nvulnerable to an unexpected application termination or arbitrary code\nexecution\nDescription:  An integer overflow existed in the handling of DNS\nresource records, which may lead to heap memory corruption. \nCVE-ID\nCVE-2011-3453 : Ilja van Sprundel of IOActive\n\nPasscode Lock\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  A person with physical access to the device may be able to\nbypass the screen lock\nDescription:  A race condition issue existed in the handling of slide\nto dial gestures. This may allow a person with physical access to the\ndevice to bypass the Passcode Lock screen. \nCVE-ID\nCVE-2012-0644 : Roland Kohler of the German Federal Ministry of\nEconomics and Technology\n\nSafari\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Web page visits may be recorded in browser history even when\nPrivate Browsing is active\nDescription:  Safari\u0027s Private Browsing is designed to prevent\nrecording of a browsing session. Pages visited as a result of a site\nusing the JavaScript methods pushState or replaceState were recorded\nin the browser history even when Private Browsing mode was active. \nThis issue is addressed by not recording such visits when Private\nBrowsing is active. \nCVE-ID\nCVE-2012-0585 : Eric Melville of American Express\n\nSiri\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  An attacker with physical access to a locked phone could get\naccess to frontmost email message\nDescription:  A design issue existed in Siri\u0027s lock screen\nrestrictions. If Siri was enabled for use on the lock screen, and\nMail was open with a message selected behind the lock screen, a voice\ncommand could be used to send that message to an arbitrary recipient. \nThis issue is addressed by disabling forwarding of active messages\nfrom the lock screen. \nCVE-ID\nCVE-2012-0645\n\nVPN\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  A maliciously crafted system configuration file may lead to\narbitrary code execution with system privileges\nDescription:  A format string vulnerability existed in the handling\nof racoon configuration files. \nCVE-ID\nCVE-2012-0646 : pod2g\n\nWebKit\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Visiting a maliciously crafted website may lead to the\ndisclosure of cookies\nDescription:  A cross-origin issue existed in WebKit, which may allow\ncookies to be disclosed across origins. \nCVE-ID\nCVE-2011-3887 : Sergey Glazunov\n\nWebKit\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Visiting a maliciously crafted website and dragging content\nwith the mouse may lead to a cross-site scripting attack\nDescription:  A cross-origin issue existed in WebKit, which may allow\ncontent to be dragged and dropped across origins. \nCVE-ID\nCVE-2012-0590 : Adam Barth of Google Chrome Security Team\n\nWebKit\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Visiting a maliciously crafted website may lead to a cross-\nsite scripting attack\nDescription:  Multiple cross-origin issues existed in WebKit. \nCVE-ID\nCVE-2011-3881 : Sergey Glazunov\nCVE-2012-0586 : Sergey Glazunov\nCVE-2012-0587 : Sergey Glazunov\nCVE-2012-0588 : Jochen Eisinger of Google Chrome Team\nCVE-2012-0589 : Alan Austin of polyvore.com\n\nWebKit\nAvailable for:  iPhone 3GS, iPhone 4, iPhone 4S,\niPod touch (3rd generation) and later, iPad, iPad 2\nImpact:  Visiting a maliciously crafted website may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  Multiple memory corruption issues existed in WebKit. \nCVE-ID\nCVE-2011-2825 : wushi of team509 working with TippingPoint\u0027s Zero Day\nInitiative\nCVE-2011-2833 : Apple\nCVE-2011-2846 : Arthur Gerkis, miaubiz\nCVE-2011-2847 : miaubiz, Abhishek Arya (Inferno) of Google Chrome\nSecurity Team using AddressSanitizer\nCVE-2011-2854 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2011-2855 : Arthur Gerkis, wushi of team509 working with iDefense\nVCP\nCVE-2011-2857 : miaubiz\nCVE-2011-2860 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2011-2867 : Dirk Schulze\nCVE-2011-2868 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2011-2869 : Cris Neckar of Google Chrome Security Team using\nAddressSanitizer\nCVE-2011-2870 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2011-2871 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2011-2872 : Abhishek Arya (Inferno) and Cris Neckar of Google\nChrome Security Team using AddressSanitizer\nCVE-2011-2873 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2011-2877 : miaubiz\nCVE-2011-3885 : miaubiz\nCVE-2011-3888 : miaubiz\nCVE-2011-3897 : pa_kt working with TippingPoint\u0027s Zero Day Initiative\nCVE-2011-3908 : Aki Helin of OUSPG\nCVE-2011-3909 : Google Chrome Security Team (scarybeasts) and Chu\nCVE-2011-3928 : wushi of team509 working with TippingPoint\u0027s Zero Day\nInitiative\nCVE-2012-0591 : miaubiz, and Martin Barbella\nCVE-2012-0592 : Alexander Gavrun working with TippingPoint\u0027s Zero Day\nInitiative\nCVE-2012-0593 : Lei Zhang of the Chromium development community\nCVE-2012-0594 : Adam Klein of the Chromium development community\nCVE-2012-0595 : Apple\nCVE-2012-0596 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0597 : miaubiz\nCVE-2012-0598 : Sergey Glazunov\nCVE-2012-0599 : Dmytro Gorbunov of SaveSources.com\nCVE-2012-0600 : Marshall Greenblatt, Dharani Govindan of Google\nChrome, miaubiz, Aki Helin of OUSPG, Apple\nCVE-2012-0601 : Apple\nCVE-2012-0602 : Apple\nCVE-2012-0603 : Apple\nCVE-2012-0604 : Apple\nCVE-2012-0605 : Apple\nCVE-2012-0606 : Apple\nCVE-2012-0607 : Apple\nCVE-2012-0608 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0609 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0610 : miaubiz, Martin Barbella using AddressSanitizer\nCVE-2012-0611 : Martin Barbella using AddressSanitizer\nCVE-2012-0612 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0613 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0614 : miaubiz, Martin Barbella using AddressSanitizer\nCVE-2012-0615 : Martin Barbella using AddressSanitizer\nCVE-2012-0616 : miaubiz\nCVE-2012-0617 : Martin Barbella using AddressSanitizer\nCVE-2012-0618 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0619 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0620 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0621 : Martin Barbella using AddressSanitizer\nCVE-2012-0622 : Dave Levin and Abhishek Arya of the Google Chrome\nSecurity Team\nCVE-2012-0623 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0624 : Martin Barbella using AddressSanitizer\nCVE-2012-0625 : Martin Barbella\nCVE-2012-0626 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam using AddressSanitizer\nCVE-2012-0627 : Apple\nCVE-2012-0628 : Slawomir Blazek, miaubiz, Abhishek Arya (Inferno) of\nGoogle Chrome Security Team using AddressSanitizer\nCVE-2012-0629 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam\nCVE-2012-0630 : Sergio Villar Senin of Igalia\nCVE-2012-0631 : Abhishek Arya (Inferno) of Google Chrome Security\nTeam\nCVE-2012-0632 : Cris Neckar of the Google Chrome Security Team using\nAddressSanitizer\nCVE-2012-0633 : Apple\nCVE-2012-0635 : Julien Chaffraix of the Chromium development\ncommunity, Martin Barbella using AddressSanitizer\n\n\nInstallation note:\n\nThis update is only available through iTunes, and will not appear\nin your computer\u0027s Software Update application, or in the Apple\nDownloads site. Make sure you have an Internet connection and have\ninstalled the latest version of iTunes from www.apple.com/itunes/\n\niTunes will automatically check Apple\u0027s update server on its weekly\nschedule. When an update is detected, it will download it. When\nthe iPhone, iPod touch or iPad is docked, iTunes will present the\nuser with the option to install the update. We recommend applying\nthe update immediately if possible. Selecting Don\u0027t Install will\npresent the option the next time you connect your iPhone, iPod touch,\nor iPad. \n\nThe automatic update process may take up to a week depending on the\nday that iTunes checks for updates. You may manually obtain the\nupdate via the Check for Updates button within iTunes. After doing\nthis, the update can be applied when your iPhone, iPod touch, or iPad\nis docked to your computer. \n\nTo check that the iPhone, iPod touch, or iPad has been updated:\n\n* Navigate to Settings\n* Select General\n* Select About. The version after applying this update will be \"5.1\". \n\nInformation will also be posted to the Apple Security Updates\nweb site: http://support.apple.com/kb/HT1222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG/MacGPG2 v2.0.16 (Darwin)\n\niQEcBAEBAgAGBQJPV6M3AAoJEGnF2JsdZQeef/cIAKBSn0czLzJO9fu6ZyjLRvxq\n4pIZgfyEVGBzpn+9IeiGFTkkVf+bOsA+Q3RlcsG5g0RlbyFgnuWu59HHsnkrElbM\nbCfnnTF5eYZX/3fnLzxpX7BUsEona3nf1gHfR24OeEn36C8rZ6rZJfMLqCJNNZGY\nRDSga1oeMN/AbgZuR9sYKudkE0GOmkLZfR2G4WXmrU+JncR6XoROUwoJBPhg8z90\nHAxgDEbduuLLOSe7CHLS3apbh0L2tmxPCWpiBmEMg6PTlFF0HhJQJ0wusrUc8nX6\n7TDsAho73wCOpChzBGQeemc6+UEN2uDmUgwVkN6n4D/qN1u6E+d3coUXOlb8hIY=\n=qPeE\n-----END PGP SIGNATURE-----\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201111-01\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n    Title: Chromium, V8: Multiple vulnerabilities\n     Date: November 01, 2011\n     Bugs: #351525, #353626, #354121, #356933, #357963, #358581,\n           #360399, #363629, #365125, #366335, #367013, #368649,\n           #370481, #373451, #373469, #377475, #377629, #380311,\n           #380897, #381713, #383251, #385649, #388461\n       ID: 201111-01\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been reported in Chromium and V8, some of\nwhich may allow execution of arbitrary code and local root privilege\nescalation. \n\nBackground\n==========\n\nChromium is an open-source web browser project. V8 is Google\u0027s open\nsource JavaScript engine. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package              /     Vulnerable     /            Unaffected\n    -------------------------------------------------------------------\n  1  www-client/chromium       \u003c 15.0.874.102         \u003e= 15.0.874.102 \n  2  dev-lang/v8                \u003c 3.5.10.22              \u003e= 3.5.10.22 \n    -------------------------------------------------------------------\n     2 affected packages\n    -------------------------------------------------------------------\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in Chromium and V8. \nPlease review the CVE identifiers and release notes referenced below\nfor details. \n\nImpact\n======\n\nA local attacker could gain root privileges (CVE-2011-1444, fixed in\nchromium-11.0.696.57). \n\nA context-dependent attacker could entice a user to open a specially\ncrafted web site or JavaScript program using Chromium or V8, possibly\nresulting in the execution of arbitrary code with the privileges of the\nprocess, or a Denial of Service condition. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll Chromium users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot -v \"\u003e=www-client/chromium-15.0.874.102\"\n\nAll V8 users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=dev-lang/v8-3.5.10.22\"\n\nReferences\n==========\n\n[  1 ] CVE-2011-2345\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2345\n[  2 ] CVE-2011-2346\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2346\n[  3 ] CVE-2011-2347\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2347\n[  4 ] CVE-2011-2348\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2348\n[  5 ] CVE-2011-2349\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2349\n[  6 ] CVE-2011-2350\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2350\n[  7 ] CVE-2011-2351\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2351\n[  8 ] CVE-2011-2834\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2834\n[  9 ] CVE-2011-2835\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2835\n[ 10 ] CVE-2011-2837\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2837\n[ 11 ] CVE-2011-2838\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2838\n[ 12 ] CVE-2011-2839\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2839\n[ 13 ] CVE-2011-2840\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2840\n[ 14 ] CVE-2011-2841\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2841\n[ 15 ] CVE-2011-2843\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2843\n[ 16 ] CVE-2011-2844\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2844\n[ 17 ] CVE-2011-2845\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2845\n[ 18 ] CVE-2011-2846\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2846\n[ 19 ] CVE-2011-2847\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2847\n[ 20 ] CVE-2011-2848\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2848\n[ 21 ] CVE-2011-2849\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2849\n[ 22 ] CVE-2011-2850\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2850\n[ 23 ] CVE-2011-2851\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2851\n[ 24 ] CVE-2011-2852\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2852\n[ 25 ] CVE-2011-2853\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2853\n[ 26 ] CVE-2011-2854\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2854\n[ 27 ] CVE-2011-2855\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2855\n[ 28 ] CVE-2011-2856\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2856\n[ 29 ] CVE-2011-2857\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2857\n[ 30 ] CVE-2011-2858\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2858\n[ 31 ] CVE-2011-2859\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2859\n[ 32 ] CVE-2011-2860\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2860\n[ 33 ] CVE-2011-2861\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2861\n[ 34 ] CVE-2011-2862\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2862\n[ 35 ] CVE-2011-2864\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2864\n[ 36 ] CVE-2011-2874\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2874\n[ 37 ] CVE-2011-3234\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3234\n[ 38 ] CVE-2011-3873\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3873\n[ 39 ] CVE-2011-3875\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3875\n[ 40 ] CVE-2011-3876\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3876\n[ 41 ] CVE-2011-3877\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3877\n[ 42 ] CVE-2011-3878\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3878\n[ 43 ] CVE-2011-3879\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3879\n[ 44 ] CVE-2011-3880\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3880\n[ 45 ] CVE-2011-3881\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3881\n[ 46 ] CVE-2011-3882\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3882\n[ 47 ] CVE-2011-3883\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3883\n[ 48 ] CVE-2011-3884\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3884\n[ 49 ] CVE-2011-3885\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3885\n[ 50 ] CVE-2011-3886\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3886\n[ 51 ] CVE-2011-3887\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3887\n[ 52 ] CVE-2011-3888\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3888\n[ 53 ] CVE-2011-3889\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3889\n[ 54 ] CVE-2011-3890\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3890\n[ 55 ] CVE-2011-3891\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3891\n[ 56 ] Release Notes 10.0.648.127\n       http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html\n[ 57 ] Release Notes 10.0.648.133\n       http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates.html\n[ 58 ] Release Notes 10.0.648.205\n       http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html\n[ 59 ] Release Notes 11.0.696.57\n       http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html\n[ 60 ] Release Notes 11.0.696.65\n       http://googlechromereleases.blogspot.com/2011/05/beta-and-stable-channel-update.html\n[ 61 ] Release Notes 11.0.696.68\n       http://googlechromereleases.blogspot.com/2011/05/stable-channel-update.html\n[ 62 ] Release Notes 11.0.696.71\n       http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html\n[ 63 ] Release Notes 12.0.742.112\n       http://googlechromereleases.blogspot.com/2011/06/stable-channel-update_28.html\n[ 64 ] Release Notes 12.0.742.91\n       http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html\n[ 65 ] Release Notes 13.0.782.107\n       http://googlechromereleases.blogspot.com/2011/08/stable-channel-update.html\n[ 66 ] Release Notes 13.0.782.215\n       http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html\n[ 67 ] Release Notes 13.0.782.220\n       http://googlechromereleases.blogspot.com/2011/09/stable-channel-update.html\n[ 68 ] Release Notes 14.0.835.163\n       http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html\n[ 69 ] Release Notes 14.0.835.202\n       http://googlechromereleases.blogspot.com/2011/10/stable-channel-update.html\n[ 70 ] Release Notes 15.0.874.102\n       http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html\n[ 71 ] Release Notes 8.0.552.237\n       http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html\n[ 72 ] Release Notes 9.0.597.107\n       http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_28.html\n[ 73 ] Release Notes 9.0.597.84\n       http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html\n[ 74 ] Release Notes 9.0.597.94\n       http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201111-01.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2011 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2011-2846"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          },
          {
            "db": "BID",
            "id": "49658"
          },
          {
            "db": "VULHUB",
            "id": "VHN-50791"
          },
          {
            "db": "PACKETSTORM",
            "id": "110716"
          },
          {
            "db": "PACKETSTORM",
            "id": "110590"
          },
          {
            "db": "PACKETSTORM",
            "id": "110591"
          },
          {
            "db": "PACKETSTORM",
            "id": "106471"
          }
        ],
        "trust": 2.34
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2011-2846",
            "trust": 3.2
          },
          {
            "db": "OSVDB",
            "id": "75545",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "48377",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "48274",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "48288",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1026774",
            "trust": 1.7
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292",
            "trust": 0.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10658",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "49658",
            "trust": 0.3
          },
          {
            "db": "VULHUB",
            "id": "VHN-50791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "110716",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "110590",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "110591",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "106471",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-50791"
          },
          {
            "db": "BID",
            "id": "49658"
          },
          {
            "db": "PACKETSTORM",
            "id": "110716"
          },
          {
            "db": "PACKETSTORM",
            "id": "110590"
          },
          {
            "db": "PACKETSTORM",
            "id": "110591"
          },
          {
            "db": "PACKETSTORM",
            "id": "106471"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          },
          {
            "db": "NVD",
            "id": "CVE-2011-2846"
          }
        ]
      },
      "id": "VAR-201109-0200",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-50791"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:30:56.602000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "HT5190",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT5190"
          },
          {
            "title": "HT5191",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT5191"
          },
          {
            "title": "HT5192",
            "trust": 0.8,
            "url": "http://support.apple.com/kb/HT5192"
          },
          {
            "title": "Google Chrome",
            "trust": 0.8,
            "url": "http://www.google.co.jp/chrome/intl/ja/landing_ff_yt.html?hl=ja\u0026hl=ja"
          },
          {
            "title": "stable-channel-update_16",
            "trust": 0.8,
            "url": "http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html"
          },
          {
            "title": "nacl",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=41604"
          },
          {
            "title": "IronPortable",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=41603"
          },
          {
            "title": "srware_iron",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=41605"
          }
        ],
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-416",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-399",
            "trust": 0.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-50791"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          },
          {
            "db": "NVD",
            "id": "CVE-2011-2846"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.1,
            "url": "http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.apple.com/archives/security-announce/2012/mar/msg00000.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.apple.com/archives/security-announce/2012/mar/msg00001.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.apple.com/archives/security-announce/2012/mar/msg00003.html"
          },
          {
            "trust": 1.7,
            "url": "http://code.google.com/p/chromium/issues/detail?id=89219"
          },
          {
            "trust": 1.7,
            "url": "http://osvdb.org/75545"
          },
          {
            "trust": 1.7,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a14451"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id?1026774"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/48274"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/48288"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/48377"
          },
          {
            "trust": 1.7,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69872"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-2846"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu428075/"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu479643/"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu341747/"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-2846"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2847"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2855"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2854"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2846"
          },
          {
            "trust": 0.3,
            "url": "http://support.apple.com/kb/ht5504"
          },
          {
            "trust": 0.3,
            "url": "http://www.google.com/chrome"
          },
          {
            "trust": 0.3,
            "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_denial_of_service_dos2"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/520068"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10658\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "http://support.avaya.com/css/p8/documents/100153798"
          },
          {
            "trust": 0.3,
            "url": "http://support.avaya.com/css/p8/documents/100156064"
          },
          {
            "trust": 0.3,
            "url": "http://support.avaya.com/css/p8/documents/100158911"
          },
          {
            "trust": 0.3,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03360041"
          },
          {
            "trust": 0.3,
            "url": "http://www.xerox.com/download/security/security-bulletin/16aeb-4cd3628b94080/cert_xrx12-009_v1.1.pdf"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2867"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3888"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2872"
          },
          {
            "trust": 0.3,
            "url": "http://support.apple.com/kb/ht1222"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2877"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2871"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2869"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2860"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3885"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2873"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2870"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2868"
          },
          {
            "trust": 0.3,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2857"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3897"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2825"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3908"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3909"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2833"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3887"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0585"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3928"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0586"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3881"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2866"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0584"
          },
          {
            "trust": 0.1,
            "url": "http://www.apple.com/safari/download/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0592"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0595"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0596"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0594"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0591"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0593"
          },
          {
            "trust": 0.1,
            "url": "http://www.apple.com/itunes/download/"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/itunes/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3453"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0587"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2849"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2841"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2351"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2847"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3875"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3890"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2350"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3884"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2848"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2853"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2835"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2837"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3879"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3888"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2859"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3881"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3889"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2351"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2844"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2843"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3876"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2844"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2345"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2837"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2853"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2834"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2845"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/05/stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3877"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2349"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3880"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/glsa/glsa-201111-01.xml"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2347"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2841"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2835"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2349"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2861"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2862"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2852"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2838"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2839"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2849"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2346"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/09/stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_28.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2858"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3891"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2855"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3887"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/06/stable-channel-update_28.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3878"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3873"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2840"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2854"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/10/stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2850"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/05/beta-and-stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2838"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2834"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3883"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2851"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2840"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2857"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2851"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2856"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2346"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2347"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2846"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2348"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2850"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2852"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2856"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2874"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2348"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2864"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2350"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2345"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2860"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3234"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2845"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2848"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3886"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/08/stable-channel-update.html"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2839"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3882"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3885"
          },
          {
            "trust": 0.1,
            "url": "http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-2843"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-50791"
          },
          {
            "db": "BID",
            "id": "49658"
          },
          {
            "db": "PACKETSTORM",
            "id": "110716"
          },
          {
            "db": "PACKETSTORM",
            "id": "110590"
          },
          {
            "db": "PACKETSTORM",
            "id": "110591"
          },
          {
            "db": "PACKETSTORM",
            "id": "106471"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          },
          {
            "db": "NVD",
            "id": "CVE-2011-2846"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-50791",
            "ident": null
          },
          {
            "db": "BID",
            "id": "49658",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "110716",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "110590",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "110591",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "106471",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2011-2846",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2011-09-19T00:00:00",
            "db": "VULHUB",
            "id": "VHN-50791",
            "ident": null
          },
          {
            "date": "2011-09-16T00:00:00",
            "db": "BID",
            "id": "49658",
            "ident": null
          },
          {
            "date": "2012-03-13T00:58:40",
            "db": "PACKETSTORM",
            "id": "110716",
            "ident": null
          },
          {
            "date": "2012-03-08T22:22:22",
            "db": "PACKETSTORM",
            "id": "110590",
            "ident": null
          },
          {
            "date": "2012-03-08T22:23:23",
            "db": "PACKETSTORM",
            "id": "110591",
            "ident": null
          },
          {
            "date": "2011-11-01T15:58:39",
            "db": "PACKETSTORM",
            "id": "106471",
            "ident": null
          },
          {
            "date": "2011-09-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201109-292",
            "ident": null
          },
          {
            "date": "2011-11-02T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2011-002647",
            "ident": null
          },
          {
            "date": "2011-09-19T12:02:55.917000",
            "db": "NVD",
            "id": "CVE-2011-2846",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2020-05-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-50791",
            "ident": null
          },
          {
            "date": "2015-04-13T21:27:00",
            "db": "BID",
            "id": "49658",
            "ident": null
          },
          {
            "date": "2020-05-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201109-292",
            "ident": null
          },
          {
            "date": "2012-03-21T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2011-002647",
            "ident": null
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2011-2846",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Used in multiple products  Webkit Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2011-002647"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "resource management error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201109-292"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201502-0366

    Vulnerability from variot - Updated: 2026-04-10 23:30

    named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use. ISC BIND 9 Under certain conditions in the management of trust anchors named Service termination (DoS) Vulnerabilities exist. ISC The advisory states that: CVE-2015-1349: A Problem with Trust Anchor Management Can Cause named to Crash https://kb.isc.org/article/AA-01235/ "BIND servers which are configured to perform DNSSEC validation and which are using managed-keys (which occurs implicitly when using "dnssec-validation auto;" or "dnssec-lookaside auto;") may terminate with an assertion failure when encountering all of the following conditions in a managed trust anchor: a key which was previously trusted is now flagged as revoked; there are no other trusted keys available; there is a standby key, but it is not trusted yet This situation results in termination of the named process and denial of service to clients, and can occur in two circumstances: during an improperly-managed key rollover for one of the managed trust anchors (e.g., during a botched root key rollover), or *when deliberately triggered by an attacker, under specific and limited circumstances. ISC has demonstrated a proof-of-concept of this attack; however, the complexity of the attack is very high unless the attacker has a specific network relationship to the BIND server which is targeted"Service disruption by a remote third party (DoS) There is a possibility of being attacked. ISC BIND is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: bind security update Advisory ID: RHSA-2015:0672-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-0672.html Issue date: 2015-03-10 CVE Names: CVE-2015-1349 =====================================================================

    1. Summary:

    Updated bind packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7.

    Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

    1. Description:

    The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

    A flaw was found in the way BIND handled trust anchor management. (CVE-2015-1349)

    Red Hat would like to thank ISC for reporting this issue.

    All bind users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the update, the BIND daemon (named) will be restarted automatically.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    For details on how to apply this update, refer to:

    https://access.redhat.com/articles/11258

    1. Package List:

    Red Hat Enterprise Linux Desktop (v. 6):

    Source: bind-9.8.2-0.30.rc1.el6_6.2.src.rpm

    i386: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.i686.rpm

    x86_64: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux Desktop Optional (v. 6):

    i386: bind-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.i686.rpm

    x86_64: bind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: bind-9.8.2-0.30.rc1.el6_6.2.src.rpm

    x86_64: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: bind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: bind-9.8.2-0.30.rc1.el6_6.2.src.rpm

    i386: bind-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.i686.rpm

    ppc64: bind-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.ppc.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm

    s390x: bind-9.8.2-0.30.rc1.el6_6.2.s390x.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.s390x.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390x.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.s390.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.s390x.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.s390x.rpm

    x86_64: bind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.i686.rpm

    ppc64: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.ppc.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm

    s390x: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390x.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.s390.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.s390x.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.s390x.rpm

    x86_64: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: bind-9.8.2-0.30.rc1.el6_6.2.src.rpm

    i386: bind-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.i686.rpm

    x86_64: bind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.i686.rpm

    x86_64: bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm bind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm bind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm

    Red Hat Enterprise Linux Client (v. 7):

    Source: bind-9.9.4-18.el7_1.1.src.rpm

    noarch: bind-license-9.9.4-18.el7_1.1.noarch.rpm

    x86_64: bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-9.9.4-18.el7_1.1.i686.rpm bind-libs-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-lite-9.9.4-18.el7_1.1.i686.rpm bind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm bind-utils-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux Client Optional (v. 7):

    x86_64: bind-9.9.4-18.el7_1.1.x86_64.rpm bind-chroot-9.9.4-18.el7_1.1.x86_64.rpm bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-devel-9.9.4-18.el7_1.1.i686.rpm bind-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-lite-devel-9.9.4-18.el7_1.1.i686.rpm bind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode (v. 7):

    Source: bind-9.9.4-18.el7_1.1.src.rpm

    noarch: bind-license-9.9.4-18.el7_1.1.noarch.rpm

    x86_64: bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-9.9.4-18.el7_1.1.i686.rpm bind-libs-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-lite-9.9.4-18.el7_1.1.i686.rpm bind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm bind-utils-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode Optional (v. 7):

    x86_64: bind-9.9.4-18.el7_1.1.x86_64.rpm bind-chroot-9.9.4-18.el7_1.1.x86_64.rpm bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-devel-9.9.4-18.el7_1.1.i686.rpm bind-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-lite-devel-9.9.4-18.el7_1.1.i686.rpm bind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: bind-9.9.4-18.el7_1.1.src.rpm

    noarch: bind-license-9.9.4-18.el7_1.1.noarch.rpm

    ppc64: bind-9.9.4-18.el7_1.1.ppc64.rpm bind-chroot-9.9.4-18.el7_1.1.ppc64.rpm bind-debuginfo-9.9.4-18.el7_1.1.ppc.rpm bind-debuginfo-9.9.4-18.el7_1.1.ppc64.rpm bind-libs-9.9.4-18.el7_1.1.ppc.rpm bind-libs-9.9.4-18.el7_1.1.ppc64.rpm bind-libs-lite-9.9.4-18.el7_1.1.ppc.rpm bind-libs-lite-9.9.4-18.el7_1.1.ppc64.rpm bind-utils-9.9.4-18.el7_1.1.ppc64.rpm

    s390x: bind-9.9.4-18.el7_1.1.s390x.rpm bind-chroot-9.9.4-18.el7_1.1.s390x.rpm bind-debuginfo-9.9.4-18.el7_1.1.s390.rpm bind-debuginfo-9.9.4-18.el7_1.1.s390x.rpm bind-libs-9.9.4-18.el7_1.1.s390.rpm bind-libs-9.9.4-18.el7_1.1.s390x.rpm bind-libs-lite-9.9.4-18.el7_1.1.s390.rpm bind-libs-lite-9.9.4-18.el7_1.1.s390x.rpm bind-utils-9.9.4-18.el7_1.1.s390x.rpm

    x86_64: bind-9.9.4-18.el7_1.1.x86_64.rpm bind-chroot-9.9.4-18.el7_1.1.x86_64.rpm bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-9.9.4-18.el7_1.1.i686.rpm bind-libs-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-lite-9.9.4-18.el7_1.1.i686.rpm bind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm bind-utils-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: bind-9.9.4-18.ael7b_1.1.src.rpm

    noarch: bind-license-9.9.4-18.ael7b_1.1.noarch.rpm

    ppc64le: bind-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-chroot-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-debuginfo-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-libs-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-libs-lite-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-utils-9.9.4-18.ael7b_1.1.ppc64le.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64: bind-debuginfo-9.9.4-18.el7_1.1.ppc.rpm bind-debuginfo-9.9.4-18.el7_1.1.ppc64.rpm bind-devel-9.9.4-18.el7_1.1.ppc.rpm bind-devel-9.9.4-18.el7_1.1.ppc64.rpm bind-lite-devel-9.9.4-18.el7_1.1.ppc.rpm bind-lite-devel-9.9.4-18.el7_1.1.ppc64.rpm bind-sdb-9.9.4-18.el7_1.1.ppc64.rpm bind-sdb-chroot-9.9.4-18.el7_1.1.ppc64.rpm

    s390x: bind-debuginfo-9.9.4-18.el7_1.1.s390.rpm bind-debuginfo-9.9.4-18.el7_1.1.s390x.rpm bind-devel-9.9.4-18.el7_1.1.s390.rpm bind-devel-9.9.4-18.el7_1.1.s390x.rpm bind-lite-devel-9.9.4-18.el7_1.1.s390.rpm bind-lite-devel-9.9.4-18.el7_1.1.s390x.rpm bind-sdb-9.9.4-18.el7_1.1.s390x.rpm bind-sdb-chroot-9.9.4-18.el7_1.1.s390x.rpm

    x86_64: bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-devel-9.9.4-18.el7_1.1.i686.rpm bind-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-lite-devel-9.9.4-18.el7_1.1.i686.rpm bind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64le: bind-debuginfo-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-devel-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-lite-devel-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-sdb-9.9.4-18.ael7b_1.1.ppc64le.rpm bind-sdb-chroot-9.9.4-18.ael7b_1.1.ppc64le.rpm

    Red Hat Enterprise Linux Workstation (v. 7):

    Source: bind-9.9.4-18.el7_1.1.src.rpm

    noarch: bind-license-9.9.4-18.el7_1.1.noarch.rpm

    x86_64: bind-9.9.4-18.el7_1.1.x86_64.rpm bind-chroot-9.9.4-18.el7_1.1.x86_64.rpm bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-9.9.4-18.el7_1.1.i686.rpm bind-libs-9.9.4-18.el7_1.1.x86_64.rpm bind-libs-lite-9.9.4-18.el7_1.1.i686.rpm bind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm bind-utils-9.9.4-18.el7_1.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 7):

    x86_64: bind-debuginfo-9.9.4-18.el7_1.1.i686.rpm bind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm bind-devel-9.9.4-18.el7_1.1.i686.rpm bind-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-lite-devel-9.9.4-18.el7_1.1.i686.rpm bind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-9.9.4-18.el7_1.1.x86_64.rpm bind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2015-1349 https://access.redhat.com/security/updates/classification/#moderate

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFU/7nhXlSAg2UNWIIRArKUAJ9WX/XGIY2BbVU1+km5wJAaBaPytQCdGBnW 7ZfcyFEskWi6YX7JcLMs9Fg= =dWCz -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .

    Release Date: 2015-07-17 Last Updated: 2015-07-17

    Potential Security Impact: Remote Denial of Service (DoS)

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP-UX running BIND. This vulnerability could be exploited remotely to create a Denial of Service (DoS).

    References:

    CVE-2015-1349 CVE-2015-4620 SSRT101976

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.31 running BIND 9.7.3 prior to C.9.7.3.7.0

    HP-UX B.11.31 running BIND 9.9.4 prior to C.9.9.4.3.0

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2015-1349 (AV:N/AC:H/Au:N/C:N/I:N/A:C) 5.4 CVE-2015-4620 (AV:N/AC:L/Au:N/C:N/I:N/A:C) 7.8 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has provided updated versions of the BIND service to resolve this vulnerability.

    BIND 9.7.3 for HP-UX Release Depot Name Download location

    B.11.31 (PA and IA) HP_UX_11.31_HPUX-NameServer_C.9.7.3.7.0_HP-UX_B.11.31_IA_PA.depot https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumbe r=BIND

    BIND 9.9.4 for HP-UX Release Depot Name Download location

    B.11.31 (PA and IA) HP_UX_11.31_HPUX-NameServer_C.9.9.4.3.0_HP-UX_B.11.31_IA_PA.depot https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumbe r=BIND

    MANUAL ACTIONS: Yes - Update Download and install the software update

    PRODUCT SPECIFIC INFORMATION HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa

    The following text is for use by the HP-UX Software Assistant.

    AFFECTED VERSIONS

    For BIND 9.7.3 HP-UX B.11.31 ================== NameService.BIND-AUX NameService.BIND-RUN action: install revision C.9.7.3.7.0 or subsequent

    For BIND 9.9.4 HP-UX B.11.31 ================== NameService.BIND-AUX NameService.BIND-RUN action: install revision C.9.9.4.3.0 or subsequent

    END AFFECTED VERSIONS

    HISTORY Version:1 (rev.1) - 17 July 2015 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. This can lead to resource exhaustion and denial of service (up to and including termination of the named server process) (CVE-2014-8500).

    Jan-Piet Mens discovered that the BIND DNS server would crash when processing an invalid DNSSEC key rollover, either due to an error on the zone operator's part, or due to interference with network traffic by an attacker. This issue affects configurations with the directives "dnssec-lookaside auto;" (as enabled in the Mandriva default configuration) or "dnssec-validation auto;" (CVE-2015-1349).


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8500 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1349 http://advisories.mageia.org/MGASA-2014-0524.html http://advisories.mageia.org/MGASA-2015-0082.html


    Updated Packages:

    Mandriva Business Server 2/X86_64: a2cf83873b09b47275d0030063a236c8 mbs2/x86_64/bind-9.10.1.P2-7.mbs2.x86_64.rpm 83d97de0884ef84b933cb06bfbbce24a mbs2/x86_64/bind-devel-9.10.1.P2-7.mbs2.x86_64.rpm 633a8a160c3be4dda5f134550288df8f mbs2/x86_64/bind-doc-9.10.1.P2-7.mbs2.noarch.rpm 40760cee0f0c97261b80d159ab60cb32 mbs2/x86_64/bind-sdb-9.10.1.P2-7.mbs2.x86_64.rpm ec17a87a3d0e50c4a1c33c84adc0c08b mbs2/x86_64/bind-utils-9.10.1.P2-7.mbs2.x86_64.rpm 95f44b351208cfcbf15108dc707b0f21 mbs2/SRPMS/bind-9.10.1.P2-7.mbs2.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. You can obtain the GPG public key of the Mandriva Security Team by executing:

    gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

    You can view other update advisories for Mandriva Linux at:

    http://www.mandriva.com/en/support/security/advisories/

    If you want to report vulnerabilities, please contact

    security_(at)_mandriva.com


    Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux)

    iD8DBQFVGDuOmqjQ0CJFipgRAqQsAJ9YWfOhd3JZjB1DstzQh7xCT2fJWQCfYwBx FGoDrVNSJeks4jEO5ZrIaN8= =0F9B -----END PGP SIGNATURE----- .

    For the stable distribution (wheezy), this problem has been fixed in version 1:9.8.4.dfsg.P1-6+nmu2+deb7u4. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512

    ============================================================================= FreeBSD-SA-15:05.bind Security Advisory The FreeBSD Project

    Topic: BIND remote denial of service vulnerability

    Category: contrib Module: bind Announced: 2015-02-25 Credits: ISC Affects: FreeBSD 8.x and FreeBSD 9.x. Corrected: 2015-02-18 22:20:19 UTC (stable/9, 9.3-STABLE) 2015-02-25 05:56:54 UTC (releng/9.3, 9.3-RELEASE-p10) 2015-02-18 22:29:52 UTC (stable/8, 8.4-STABLE) 2015-02-25 05:56:54 UTC (releng/8.4, 8.4-RELEASE-p24) CVE Name: CVE-2015-1349

    For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit .

    II. Problem Description

    BIND servers which are configured to perform DNSSEC validation and which are using managed keys (which occurs implicitly when using "dnssec-validation auto;" or "dnssec-lookaside auto;") may exhibit unpredictable behavior due to the use of an improperly initialized variable.

    III.

    IV. Workaround

    Only systems that runs BIND, including recursive resolvers and authoritative servers that performs DNSSEC validation and using managed-keys are affected.

    This issue can be worked around by not using "auto" for the dnssec-validation or dnssec-lookaside options and do not configure a managed-keys statement. Note that in order to do DNSSEC validation with this workaround one would have to configure an explicit trusted-keys statement with the appropriate keys.

    V. Solution

    Perform one of the following:

    1) Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date.

    2) To update your vulnerable system via a binary patch:

    Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility:

    freebsd-update fetch

    freebsd-update install

    3) To update your vulnerable system via a source code patch:

    The following patches have been verified to apply to the applicable FreeBSD release branches.

    a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.

    fetch https://security.FreeBSD.org/patches/SA-15:05/bind.patch

    fetch https://security.FreeBSD.org/patches/SA-15:05/bind.patch.asc

    gpg --verify bind.patch.asc

    b) Apply the patch. Execute the following commands as root:

    cd /usr/src

    patch < /path/to/patch

    c) Recompile the operating system using buildworld and installworld as described in .

    Restart the applicable daemons, or reboot the system.

    VI. Correction details

    The following list contains the correction revision numbers for each affected branch.

    Branch/path Revision


    stable/8/ r278973 releng/8.4/ r279265 stable/9/ r278972 releng/9.3/ r279265


    To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed:

    svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base

    Or visit the following URL, replacing NNNNNN with the revision number:

    VII. ============================================================================ Ubuntu Security Notice USN-2503-1 February 18, 2015

    bind9 vulnerability

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 14.10
    • Ubuntu 14.04 LTS
    • Ubuntu 12.04 LTS

    Summary:

    Bind could be made to crash if it received specially crafted network traffic.

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 14.10: bind9 1:9.9.5.dfsg-4.3ubuntu0.2

    Ubuntu 14.04 LTS: bind9 1:9.9.5.dfsg-3ubuntu0.2

    Ubuntu 12.04 LTS: bind9 1:9.8.1.dfsg.P1-4ubuntu0.10

    In general, a standard system update will make all the necessary changes. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201510-01


                                           https://security.gentoo.org/
    

    Severity: Normal Title: BIND: Denial of Service Date: October 18, 2015 Bugs: #540640, #553584, #556150, #559462 ID: 201510-01


    Synopsis

    A vulnerability in BIND could lead to a Denial of Service condition.

    Affected packages

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
    

    1 net-dns/bind < 9.10.2_p4 >= 9.10.2_p4

    Description

    A vulnerability has been discovered in BIND's named utility leading to a Denial of Service condition.

    Workaround

    There is no known workaround at this time.

    Resolution

    All BIND users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/bind-9.10.2_p4"

    References

    [ 1 ] CVE-2015-1349 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1349 [ 2 ] CVE-2015-4620 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4620 [ 3 ] CVE-2015-5477 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5477 [ 4 ] CVE-2015-5722 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5722 [ 5 ] CVE-2015-5986 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5986

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    https://security.gentoo.org/glsa/201510-01

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2015 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "isc",
            "version": "9.8.3"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "isc",
            "version": "9.8.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "isc",
            "version": "9.7.6"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "isc",
            "version": "9.9.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "isc",
            "version": "9.8.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "isc",
            "version": "9.7.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "isc",
            "version": "9.7.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.7.5"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.7.7"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.10.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.7.3"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.10.2"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.5"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.3"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.8.2"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.7.2"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.8.5"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.6"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.7.4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.2"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.10.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.9.7"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.8.6"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.8.4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "isc",
            "version": "9.7.0 from  9.10.1-p1"
          },
          {
            "_id": null,
            "model": "macos server",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "5.0.3   (os x yosemite v10.10.5 or later )"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "isc",
            "version": "9.7.0b1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.10"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "opensuse evergreen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11.4"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.37"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.6.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1x8664"
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1"
          },
          {
            "_id": null,
            "model": "northstar controller application",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "bind 9.7.1-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "bind p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.7.1"
          },
          {
            "_id": null,
            "model": "bind p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.7.0"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p9",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p6",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p5",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-rc3-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-rc2-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-rc2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-rc1-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-rc",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-prerelease",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-beta3-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-beta1-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-beta1-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-beta1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "9.2-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p9",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p8",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p7",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p5",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p16",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p15",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p13",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p12",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p10",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-rc3-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-rc2-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-rc2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-rc1-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-rc1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "rc2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "prerelease",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "9.1-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p7",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p23",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p22",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p20",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p19",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p18",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p17",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p16",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p15",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p14",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p12",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p10",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-rc2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-rc1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1--releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "release-p5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "release-p4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "9.0-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.0-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.0-release-p6",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.0-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.0-rc3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.0-rc1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.0--releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "8.4-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p9",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p8",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p7",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p23",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p20",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p19",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p17",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p16",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p15",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p14",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p13",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p12",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-rc2-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-rc1-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-prerelease",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-beta1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "8.3-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-release-p8",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-release-p6",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-release-p16",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-release-p15",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-release-p14",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.3-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "8.2-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.2-release-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.2-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.2-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "release -p3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.2-"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "8.1-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.1-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.1-release-p5",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.1-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.1-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.1-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.1-prerelease",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "8.0-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.0-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.0-rc1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "-release-p5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "session border controller for enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "cms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "17.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x4.1.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x3.2.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x3.2.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x3.1.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x4.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x4.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x3.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.5"
          },
          {
            "_id": null,
            "model": "northstar controller application service pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2.1.01"
          },
          {
            "_id": null,
            "model": "9.3-stable",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.3-release-p10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-stable",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p24",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x5.0.3"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "72673"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1349"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:isc:bind",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:os_x_server",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Jan-Piet Mens",
        "sources": [
          {
            "db": "BID",
            "id": "72673"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2015-1349",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "HIGH",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 5.4,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 4.9,
                "id": "CVE-2015-1349",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-1349",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2015-1349",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201502-414",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1349"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use. ISC BIND 9 Under certain conditions in the management of trust anchors named Service termination (DoS) Vulnerabilities exist. ISC The advisory states that: CVE-2015-1349: A Problem with Trust Anchor Management Can Cause named to Crash https://kb.isc.org/article/AA-01235/ \"BIND servers which are configured to perform DNSSEC validation and which are using managed-keys (which occurs implicitly when using \"dnssec-validation auto;\" or \"dnssec-lookaside auto;\") may terminate with an assertion failure when encountering all of the following conditions in a managed trust anchor: *a key which was previously trusted is now flagged as revoked; *there are no other trusted keys available; *there is a standby key, but it is not trusted yet This situation results in termination of the named process and denial of service to clients, and can occur in two circumstances: *during an improperly-managed key rollover for one of the managed trust anchors (e.g., during a botched root key rollover), or *when deliberately triggered by an attacker, under specific and limited circumstances. ISC has demonstrated a proof-of-concept of this attack; however, the complexity of the attack is very high unless the attacker has a specific network relationship to the BIND server which is targeted\"Service disruption by a remote third party (DoS) There is a possibility of being attacked. ISC BIND is prone to a remote denial-of-service vulnerability. \nAttackers can exploit this issue to crash the affected application, denying service to legitimate users. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: bind security update\nAdvisory ID:       RHSA-2015:0672-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2015-0672.html\nIssue date:        2015-03-10\nCVE Names:         CVE-2015-1349 \n=====================================================================\n\n1. Summary:\n\nUpdated bind packages that fix one security issue are now available for Red\nHat Enterprise Linux 6 and 7. \n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. Description:\n\nThe Berkeley Internet Name Domain (BIND) is an implementation of the Domain\nName System (DNS) protocols. BIND includes a DNS server (named); a resolver\nlibrary (routines for applications to use when interfacing with DNS); and\ntools for verifying that the DNS server is operating correctly. \n\nA flaw was found in the way BIND handled trust anchor management. (CVE-2015-1349)\n\nRed Hat would like to thank ISC for reporting this issue. \n\nAll bind users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. After installing the\nupdate, the BIND daemon (named) will be restarted automatically. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nbind-9.8.2-0.30.rc1.el6_6.2.src.rpm\n\ni386:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.i686.rpm\n\nx86_64:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\ni386:\nbind-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.i686.rpm\n\nx86_64:\nbind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nbind-9.8.2-0.30.rc1.el6_6.2.src.rpm\n\nx86_64:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nbind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nbind-9.8.2-0.30.rc1.el6_6.2.src.rpm\n\ni386:\nbind-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.i686.rpm\n\nppc64:\nbind-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.ppc.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\n\ns390x:\nbind-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.s390.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\n\nx86_64:\nbind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.i686.rpm\n\nppc64:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.ppc.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.ppc64.rpm\n\ns390x:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.s390.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.s390x.rpm\n\nx86_64:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nbind-9.8.2-0.30.rc1.el6_6.2.src.rpm\n\ni386:\nbind-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.i686.rpm\n\nx86_64:\nbind-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-chroot-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-libs-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-utils-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.i686.rpm\n\nx86_64:\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-debuginfo-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.i686.rpm\nbind-devel-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\nbind-sdb-9.8.2-0.30.rc1.el6_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nbind-9.9.4-18.el7_1.1.src.rpm\n\nnoarch:\nbind-license-9.9.4-18.el7_1.1.noarch.rpm\n\nx86_64:\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm\nbind-utils-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nbind-9.9.4-18.el7_1.1.x86_64.rpm\nbind-chroot-9.9.4-18.el7_1.1.x86_64.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nbind-9.9.4-18.el7_1.1.src.rpm\n\nnoarch:\nbind-license-9.9.4-18.el7_1.1.noarch.rpm\n\nx86_64:\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm\nbind-utils-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nbind-9.9.4-18.el7_1.1.x86_64.rpm\nbind-chroot-9.9.4-18.el7_1.1.x86_64.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nbind-9.9.4-18.el7_1.1.src.rpm\n\nnoarch:\nbind-license-9.9.4-18.el7_1.1.noarch.rpm\n\nppc64:\nbind-9.9.4-18.el7_1.1.ppc64.rpm\nbind-chroot-9.9.4-18.el7_1.1.ppc64.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.ppc.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.ppc64.rpm\nbind-libs-9.9.4-18.el7_1.1.ppc.rpm\nbind-libs-9.9.4-18.el7_1.1.ppc64.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.ppc.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.ppc64.rpm\nbind-utils-9.9.4-18.el7_1.1.ppc64.rpm\n\ns390x:\nbind-9.9.4-18.el7_1.1.s390x.rpm\nbind-chroot-9.9.4-18.el7_1.1.s390x.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.s390.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.s390x.rpm\nbind-libs-9.9.4-18.el7_1.1.s390.rpm\nbind-libs-9.9.4-18.el7_1.1.s390x.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.s390.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.s390x.rpm\nbind-utils-9.9.4-18.el7_1.1.s390x.rpm\n\nx86_64:\nbind-9.9.4-18.el7_1.1.x86_64.rpm\nbind-chroot-9.9.4-18.el7_1.1.x86_64.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm\nbind-utils-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nbind-9.9.4-18.ael7b_1.1.src.rpm\n\nnoarch:\nbind-license-9.9.4-18.ael7b_1.1.noarch.rpm\n\nppc64le:\nbind-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-chroot-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-debuginfo-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-libs-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-libs-lite-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-utils-9.9.4-18.ael7b_1.1.ppc64le.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nbind-debuginfo-9.9.4-18.el7_1.1.ppc.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.ppc64.rpm\nbind-devel-9.9.4-18.el7_1.1.ppc.rpm\nbind-devel-9.9.4-18.el7_1.1.ppc64.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.ppc.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.ppc64.rpm\nbind-sdb-9.9.4-18.el7_1.1.ppc64.rpm\nbind-sdb-chroot-9.9.4-18.el7_1.1.ppc64.rpm\n\ns390x:\nbind-debuginfo-9.9.4-18.el7_1.1.s390.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.s390x.rpm\nbind-devel-9.9.4-18.el7_1.1.s390.rpm\nbind-devel-9.9.4-18.el7_1.1.s390x.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.s390.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.s390x.rpm\nbind-sdb-9.9.4-18.el7_1.1.s390x.rpm\nbind-sdb-chroot-9.9.4-18.el7_1.1.s390x.rpm\n\nx86_64:\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64le:\nbind-debuginfo-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-devel-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-lite-devel-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-sdb-9.9.4-18.ael7b_1.1.ppc64le.rpm\nbind-sdb-chroot-9.9.4-18.ael7b_1.1.ppc64le.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nbind-9.9.4-18.el7_1.1.src.rpm\n\nnoarch:\nbind-license-9.9.4-18.el7_1.1.noarch.rpm\n\nx86_64:\nbind-9.9.4-18.el7_1.1.x86_64.rpm\nbind-chroot-9.9.4-18.el7_1.1.x86_64.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-9.9.4-18.el7_1.1.x86_64.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.i686.rpm\nbind-libs-lite-9.9.4-18.el7_1.1.x86_64.rpm\nbind-utils-9.9.4-18.el7_1.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nbind-debuginfo-9.9.4-18.el7_1.1.i686.rpm\nbind-debuginfo-9.9.4-18.el7_1.1.x86_64.rpm\nbind-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.i686.rpm\nbind-lite-devel-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-9.9.4-18.el7_1.1.x86_64.rpm\nbind-sdb-chroot-9.9.4-18.el7_1.1.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2015-1349\nhttps://access.redhat.com/security/updates/classification/#moderate\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFU/7nhXlSAg2UNWIIRArKUAJ9WX/XGIY2BbVU1+km5wJAaBaPytQCdGBnW\n7ZfcyFEskWi6YX7JcLMs9Fg=\n=dWCz\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nRelease Date: 2015-07-17\nLast Updated: 2015-07-17\n\nPotential Security Impact: Remote Denial of Service (DoS)\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP-UX running\nBIND. This vulnerability could be exploited remotely to create a Denial of\nService (DoS). \n\nReferences:\n\nCVE-2015-1349\nCVE-2015-4620\nSSRT101976\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.31 running BIND 9.7.3 prior to C.9.7.3.7.0\n\nHP-UX B.11.31 running BIND 9.9.4 prior to C.9.9.4.3.0\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2015-1349    (AV:N/AC:H/Au:N/C:N/I:N/A:C)       5.4\nCVE-2015-4620    (AV:N/AC:L/Au:N/C:N/I:N/A:C)       7.8\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided updated versions of the BIND service to resolve this\nvulnerability. \n\nBIND 9.7.3 for HP-UX Release\n Depot Name\n Download location\n\nB.11.31 (PA and IA)\n HP_UX_11.31_HPUX-NameServer_C.9.7.3.7.0_HP-UX_B.11.31_IA_PA.depot\n https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumbe\nr=BIND\n\nBIND 9.9.4 for HP-UX Release\n Depot Name\n Download location\n\nB.11.31 (PA and IA)\n HP_UX_11.31_HPUX-NameServer_C.9.9.4.3.0_HP-UX_B.11.31_IA_PA.depot\n https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumbe\nr=BIND\n\nMANUAL ACTIONS: Yes - Update\nDownload and install the software update\n\nPRODUCT SPECIFIC INFORMATION\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see: https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nFor BIND 9.7.3\nHP-UX B.11.31\n==================\nNameService.BIND-AUX\nNameService.BIND-RUN\naction: install revision C.9.7.3.7.0 or subsequent\n\nFor BIND 9.9.4\nHP-UX B.11.31\n==================\nNameService.BIND-AUX\nNameService.BIND-RUN\naction: install revision C.9.9.4.3.0 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 17 July 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners.  This can\n lead to resource exhaustion and denial of service (up to and including\n termination of the named server process) (CVE-2014-8500). \n \n Jan-Piet Mens discovered that the BIND DNS server would crash when\n processing an invalid DNSSEC key rollover, either due to an error\n on the zone operator\u0026#039;s part, or due to interference with network\n traffic by an attacker. This issue affects configurations with the\n directives \u0026quot;dnssec-lookaside auto;\u0026quot; (as enabled in the Mandriva\n default configuration) or \u0026quot;dnssec-validation auto;\u0026quot; (CVE-2015-1349). \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8500\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1349\n http://advisories.mageia.org/MGASA-2014-0524.html\n http://advisories.mageia.org/MGASA-2015-0082.html\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Business Server 2/X86_64:\n a2cf83873b09b47275d0030063a236c8  mbs2/x86_64/bind-9.10.1.P2-7.mbs2.x86_64.rpm\n 83d97de0884ef84b933cb06bfbbce24a  mbs2/x86_64/bind-devel-9.10.1.P2-7.mbs2.x86_64.rpm\n 633a8a160c3be4dda5f134550288df8f  mbs2/x86_64/bind-doc-9.10.1.P2-7.mbs2.noarch.rpm\n 40760cee0f0c97261b80d159ab60cb32  mbs2/x86_64/bind-sdb-9.10.1.P2-7.mbs2.x86_64.rpm\n ec17a87a3d0e50c4a1c33c84adc0c08b  mbs2/x86_64/bind-utils-9.10.1.P2-7.mbs2.x86_64.rpm \n 95f44b351208cfcbf15108dc707b0f21  mbs2/SRPMS/bind-9.10.1.P2-7.mbs2.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you.  You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n  http://www.mandriva.com/en/support/security/advisories/\n\n If you want to report vulnerabilities, please contact\n\n  security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID     Date       User ID\n pub  1024D/22458A98 2000-07-10 Mandriva Security Team\n  \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.12 (GNU/Linux)\n\niD8DBQFVGDuOmqjQ0CJFipgRAqQsAJ9YWfOhd3JZjB1DstzQh7xCT2fJWQCfYwBx\nFGoDrVNSJeks4jEO5ZrIaN8=\n=0F9B\n-----END PGP SIGNATURE-----\n. \n\nFor the stable distribution (wheezy), this problem has been fixed in\nversion 1:9.8.4.dfsg.P1-6+nmu2+deb7u4. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n=============================================================================\nFreeBSD-SA-15:05.bind                                       Security Advisory\n                                                          The FreeBSD Project\n\nTopic:          BIND remote denial of service vulnerability\n\nCategory:       contrib\nModule:         bind\nAnnounced:      2015-02-25\nCredits:        ISC\nAffects:        FreeBSD 8.x and FreeBSD 9.x. \nCorrected:      2015-02-18 22:20:19 UTC (stable/9, 9.3-STABLE)\n                2015-02-25 05:56:54 UTC (releng/9.3, 9.3-RELEASE-p10)\n                2015-02-18 22:29:52 UTC (stable/8, 8.4-STABLE)\n                2015-02-25 05:56:54 UTC (releng/8.4, 8.4-RELEASE-p24)\nCVE Name:       CVE-2015-1349\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:https://security.FreeBSD.org/\u003e. \n\nII.  Problem Description\n\nBIND servers which are configured to perform DNSSEC validation and which\nare using managed keys (which occurs implicitly when using\n\"dnssec-validation auto;\" or \"dnssec-lookaside auto;\") may exhibit\nunpredictable behavior due to the use of an improperly initialized\nvariable. \n\nIII. \n\nIV.  Workaround\n\nOnly systems that runs BIND, including recursive resolvers and authoritative\nservers that performs DNSSEC validation and using managed-keys are affected. \n\nThis issue can be worked around by not using \"auto\" for the dnssec-validation\nor dnssec-lookaside options and do not configure a managed-keys statement. \nNote that in order to do DNSSEC validation with this workaround one would\nhave to configure an explicit trusted-keys statement with the appropriate\nkeys. \n\nV.   Solution\n\nPerform one of the following:\n\n1) Upgrade your vulnerable system to a supported FreeBSD stable or\nrelease / security branch (releng) dated after the correction date. \n\n2) To update your vulnerable system via a binary patch:\n\nSystems running a RELEASE version of FreeBSD on the i386 or amd64\nplatforms can be updated via the freebsd-update(8) utility:\n\n# freebsd-update fetch\n# freebsd-update install\n\n3) To update your vulnerable system via a source code patch:\n\nThe following patches have been verified to apply to the applicable\nFreeBSD release branches. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n# fetch https://security.FreeBSD.org/patches/SA-15:05/bind.patch\n# fetch https://security.FreeBSD.org/patches/SA-15:05/bind.patch.asc\n# gpg --verify bind.patch.asc\n\nb) Apply the patch.  Execute the following commands as root:\n\n# cd /usr/src\n# patch \u003c /path/to/patch\n\nc) Recompile the operating system using buildworld and installworld as\ndescribed in \u003cURL:https://www.FreeBSD.org/handbook/makeworld.html\u003e. \n\nRestart the applicable daemons, or reboot the system. \n\nVI.  Correction details\n\nThe following list contains the correction revision numbers for each\naffected branch. \n\nBranch/path                                                      Revision\n- -------------------------------------------------------------------------\nstable/8/                                                         r278973\nreleng/8.4/                                                       r279265\nstable/9/                                                         r278972\nreleng/9.3/                                                       r279265\n- -------------------------------------------------------------------------\n\nTo see which files were modified by a particular revision, run the\nfollowing command, replacing NNNNNN with the revision number, on a\nmachine with Subversion installed:\n\n# svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base\n\nOr visit the following URL, replacing NNNNNN with the revision number:\n\n\u003cURL:https://svnweb.freebsd.org/base?view=revision\u0026revision=NNNNNN\u003e\n\nVII. ============================================================================\nUbuntu Security Notice USN-2503-1\nFebruary 18, 2015\n\nbind9 vulnerability\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 14.10\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n\nSummary:\n\nBind could be made to crash if it received specially crafted network\ntraffic. \n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 14.10:\n  bind9                           1:9.9.5.dfsg-4.3ubuntu0.2\n\nUbuntu 14.04 LTS:\n  bind9                           1:9.9.5.dfsg-3ubuntu0.2\n\nUbuntu 12.04 LTS:\n  bind9                           1:9.8.1.dfsg.P1-4ubuntu0.10\n\nIn general, a standard system update will make all the necessary changes. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201510-01\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Normal\n    Title: BIND: Denial of Service\n     Date: October 18, 2015\n     Bugs: #540640, #553584, #556150, #559462\n       ID: 201510-01\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nA vulnerability in BIND could lead to a Denial of Service condition. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package              /     Vulnerable     /            Unaffected\n    -------------------------------------------------------------------\n  1  net-dns/bind               \u003c 9.10.2_p4              \u003e= 9.10.2_p4 \n\nDescription\n===========\n\nA vulnerability has been discovered in BIND\u0027s named utility leading to\na Denial of Service condition. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll BIND users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=net-dns/bind-9.10.2_p4\"\n\nReferences\n==========\n\n[ 1 ] CVE-2015-1349\n      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1349\n[ 2 ] CVE-2015-4620\n      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4620\n[ 3 ] CVE-2015-5477\n      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5477\n[ 4 ] CVE-2015-5722\n      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5722\n[ 5 ] CVE-2015-5986\n      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5986\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/201510-01\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2015 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-1349"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          },
          {
            "db": "BID",
            "id": "72673"
          },
          {
            "db": "PACKETSTORM",
            "id": "130646"
          },
          {
            "db": "PACKETSTORM",
            "id": "130758"
          },
          {
            "db": "PACKETSTORM",
            "id": "132752"
          },
          {
            "db": "PACKETSTORM",
            "id": "131222"
          },
          {
            "db": "PACKETSTORM",
            "id": "130451"
          },
          {
            "db": "PACKETSTORM",
            "id": "130558"
          },
          {
            "db": "PACKETSTORM",
            "id": "130446"
          },
          {
            "db": "PACKETSTORM",
            "id": "134008"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-1349",
            "trust": 3.5
          },
          {
            "db": "ISC",
            "id": "AA-01235",
            "trust": 2.0
          },
          {
            "db": "JUNIPER",
            "id": "JSA10783",
            "trust": 1.3
          },
          {
            "db": "MCAFEE",
            "id": "SB10116",
            "trust": 1.0
          },
          {
            "db": "JVN",
            "id": "JVNVU99970459",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU93982119",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "72673",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "130646",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130758",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132752",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131222",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130451",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130558",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130446",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "134008",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "72673"
          },
          {
            "db": "PACKETSTORM",
            "id": "130646"
          },
          {
            "db": "PACKETSTORM",
            "id": "130758"
          },
          {
            "db": "PACKETSTORM",
            "id": "132752"
          },
          {
            "db": "PACKETSTORM",
            "id": "131222"
          },
          {
            "db": "PACKETSTORM",
            "id": "130451"
          },
          {
            "db": "PACKETSTORM",
            "id": "130558"
          },
          {
            "db": "PACKETSTORM",
            "id": "130446"
          },
          {
            "db": "PACKETSTORM",
            "id": "134008"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1349"
          }
        ]
      },
      "id": "VAR-201502-0366",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.59105265
      },
      "last_update_date": "2026-04-10T23:30:42.934000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "APPLE-SA-2015-09-16-4 OS X Server 5.0.3",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2015/Sep/msg00004.html"
          },
          {
            "title": "HT205219",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT205219"
          },
          {
            "title": "HT205219",
            "trust": 0.8,
            "url": "http://support.apple.com/ja-jp/HT205219"
          },
          {
            "title": "HPSBUX03379",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143740940810833\u0026amp;w=2"
          },
          {
            "title": "CVE-2015-1349: A Problem with Trust Anchor Management Can Cause named to Crash",
            "trust": 0.8,
            "url": "https://kb.isc.org/article/AA-01235/"
          },
          {
            "title": "SB10116",
            "trust": 0.8,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10116"
          },
          {
            "title": "Bug 1193820",
            "trust": 0.8,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193820"
          },
          {
            "title": "RHSA-2015:0672",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/RHSA-2015-0672.html"
          },
          {
            "title": "BIND9.9.7.x86",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=54140"
          },
          {
            "title": "bind-9.10.2",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=54143"
          },
          {
            "title": "BIND9.10.2.x86",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=54142"
          },
          {
            "title": "bind-9.9.7",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=54141"
          }
        ],
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-399",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1349"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.0,
            "url": "http://advisories.mageia.org/mgasa-2015-0082.html"
          },
          {
            "trust": 1.9,
            "url": "https://kb.isc.org/article/aa-01235"
          },
          {
            "trust": 1.7,
            "url": "http://www.ubuntu.com/usn/usn-2503-1"
          },
          {
            "trust": 1.4,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0672.html"
          },
          {
            "trust": 1.1,
            "url": "https://security.gentoo.org/glsa/201510-01"
          },
          {
            "trust": 1.0,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1349"
          },
          {
            "trust": 1.0,
            "url": "https://kb.juniper.net/jsa10783"
          },
          {
            "trust": 1.0,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-march/150905.html"
          },
          {
            "trust": 1.0,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193820"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00013.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:054"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00038.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:165"
          },
          {
            "trust": 1.0,
            "url": "http://lists.apple.com/archives/security-announce/2015/sep/msg00004.html"
          },
          {
            "trust": 1.0,
            "url": "https://support.apple.com/ht205219"
          },
          {
            "trust": 1.0,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10116"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00050.html"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=143740940810833\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-march/150904.html"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1349"
          },
          {
            "trust": 0.8,
            "url": "http://jprs.jp/tech/security/2015-02-19-bind9-vuln-managed-trust-anchors.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu93982119/"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu99970459/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-1349"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2015/feb/145"
          },
          {
            "trust": 0.3,
            "url": "http://www.isc.org/products/bind/"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2015/jul/96"
          },
          {
            "trust": 0.3,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10783\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/101009291"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020682"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022295"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2015/apr/158"
          },
          {
            "trust": 0.2,
            "url": "http://www.mandriva.com/en/support/security/"
          },
          {
            "trust": 0.2,
            "url": "http://www.mandriva.com/en/support/security/advisories/"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4620"
          },
          {
            "trust": 0.2,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-1349"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.1,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.1,
            "url": "https://h20392.www2.hp.com/portal/swdepot/displayproductinfo.do?productnumbe"
          },
          {
            "trust": 0.1,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.1,
            "url": "http://advisories.mageia.org/mgasa-2014-0524.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8500"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8500"
          },
          {
            "trust": 0.1,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://www.freebsd.org/handbook/makeworld.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/advisories/freebsd-sa-15:05.bind.asc\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:05/bind.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1349\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:05/bind.patch"
          },
          {
            "trust": 0.1,
            "url": "https://svnweb.freebsd.org/base?view=revision\u0026revision=nnnnnn\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://kb.isc.org/article/aa-01235\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/bind9/1:9.8.1.dfsg.p1-4ubuntu0.10"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.2"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-4.3ubuntu0.2"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4620"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5986"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5477"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5722"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5722"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5477"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5986"
          },
          {
            "trust": 0.1,
            "url": "https://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-1349"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "72673"
          },
          {
            "db": "PACKETSTORM",
            "id": "130646"
          },
          {
            "db": "PACKETSTORM",
            "id": "130758"
          },
          {
            "db": "PACKETSTORM",
            "id": "132752"
          },
          {
            "db": "PACKETSTORM",
            "id": "131222"
          },
          {
            "db": "PACKETSTORM",
            "id": "130451"
          },
          {
            "db": "PACKETSTORM",
            "id": "130558"
          },
          {
            "db": "PACKETSTORM",
            "id": "130446"
          },
          {
            "db": "PACKETSTORM",
            "id": "134008"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1349"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "BID",
            "id": "72673",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130646",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130758",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132752",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131222",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130451",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130558",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130446",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "134008",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1349",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-02-18T00:00:00",
            "db": "BID",
            "id": "72673",
            "ident": null
          },
          {
            "date": "2015-03-04T18:22:22",
            "db": "PACKETSTORM",
            "id": "130646",
            "ident": null
          },
          {
            "date": "2015-03-11T16:04:19",
            "db": "PACKETSTORM",
            "id": "130758",
            "ident": null
          },
          {
            "date": "2015-07-20T19:49:16",
            "db": "PACKETSTORM",
            "id": "132752",
            "ident": null
          },
          {
            "date": "2015-03-31T16:02:39",
            "db": "PACKETSTORM",
            "id": "131222",
            "ident": null
          },
          {
            "date": "2015-02-19T16:34:38",
            "db": "PACKETSTORM",
            "id": "130451",
            "ident": null
          },
          {
            "date": "2015-02-26T17:25:28",
            "db": "PACKETSTORM",
            "id": "130558",
            "ident": null
          },
          {
            "date": "2015-02-18T22:42:55",
            "db": "PACKETSTORM",
            "id": "130446",
            "ident": null
          },
          {
            "date": "2015-10-18T21:06:41",
            "db": "PACKETSTORM",
            "id": "134008",
            "ident": null
          },
          {
            "date": "2015-02-26T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201502-414",
            "ident": null
          },
          {
            "date": "2015-02-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-001534",
            "ident": null
          },
          {
            "date": "2015-02-19T03:01:22.287000",
            "db": "NVD",
            "id": "CVE-2015-1349",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2017-04-18T01:05:00",
            "db": "BID",
            "id": "72673",
            "ident": null
          },
          {
            "date": "2015-02-26T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201502-414",
            "ident": null
          },
          {
            "date": "2015-10-05T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-001534",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-1349",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "130758"
          },
          {
            "db": "PACKETSTORM",
            "id": "130558"
          },
          {
            "db": "PACKETSTORM",
            "id": "130446"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "_id": null,
        "data": "ISC BIND 9 Service operation interruption  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001534"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "resource management error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201502-414"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201501-0339

    Vulnerability from variot - Updated: 2026-04-10 23:30

    The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support. OpenSSL is prone to security-bypass vulnerability. Successfully exploiting these issues may allow attackers to perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks. Corrected: 2015-01-09 00:58:20 UTC (stable/10, 10.1-STABLE) 2015-01-14 21:27:46 UTC (releng/10.1, 10.1-RELEASE-p4) 2015-01-14 21:27:46 UTC (releng/10.0, 10.0-RELEASE-p16) 2015-01-09 01:11:43 UTC (stable/9, 9.3-STABLE) 2015-01-14 21:27:46 UTC (releng/9.3, 9.3-RELEASE-p8) 2015-01-09 01:11:43 UTC (stable/8, 8.4-STABLE) 2015-01-14 21:27:46 UTC (releng/8.4, 8.4-RELEASE-p22) CVE Name: CVE-2014-3571, CVE-2015-0206, CVE-2014-3569, CVE-2014-3572 CVE-2015-0204, CVE-2015-0205, CVE-2014-8275, CVE-2014-3570

    For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit . Background

    FreeBSD includes software from the OpenSSL Project.

    II. [CVE-2014-3569] This does not affect FreeBSD's default build. [CVE-2015-0205]

    OpenSSL accepts several non-DER-variations of certificate signature algorithm and signature encodings. OpenSSL also does not enforce a match between the signature algorithm between the signed and unsigned portions of the certificate. [CVE-2014-3570]

    III. [CVE-2015-0206]

    A server can remove forward secrecy from the ciphersuite. [CVE-2014-3572]

    A server could present a weak temporary key and downgrade the security of the session. This only affects servers which trust a client certificate authority which issues certificates containing DH keys, which is extremely rare. [CVE-2015-0205]

    By modifying the contents of the signature algorithm or the encoding of the signature, it is possible to change the certificate's fingerprint. It also does not affect common revocation mechanisms. Only custom applications that rely on the uniqueness of the fingerprint (e.g. certificate blacklists) may be affected. [CVE-2014-8275]

    IV. Workaround

    No workaround is available.

    V. Solution

    Perform one of the following:

    1) Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date.

    2) To update your vulnerable system via a binary patch:

    Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility:

    freebsd-update fetch

    freebsd-update install

    3) To update your vulnerable system via a source code patch:

    The following patches have been verified to apply to the applicable FreeBSD release branches.

    a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.

    [FreeBSD 8.4 and FreeBSD 9.3]

    fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-9.3.patch

    fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-9.3.patch.asc

    gpg --verify openssl-9.3.patch.asc

    [FreeBSD 10.0]

    fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.0.patch

    fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.0.patch.asc

    gpg --verify openssl-10.0.patch.asc

    [FreeBSD 10.1]

    fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.1.patch

    fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.1.patch.asc

    gpg --verify openssl-10.1.patch.asc

    b) Apply the patch. Execute the following commands as root:

    cd /usr/src

    patch < /path/to/patch

    c) Recompile the operating system using buildworld and installworld as described in .

    Restart all deamons using the library, or reboot the system.

    VI. Correction details

    The following list contains the correction revision numbers for each affected branch.

    Branch/path Revision


    stable/8/ r276865 releng/8.4/ r277195 stable/9/ r276865 releng/9.3/ r277195 stable/10/ r276864 releng/10.0/ r277195 releng/10.1/ r277195


    To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed:

    svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base

    Or visit the following URL, replacing NNNNNN with the revision number:

    VII.

    The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via a FLUSH+RELOAD cache side-channel attack (CVE-2014-0076).

    The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug (CVE-2014-0160).

    The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment (CVE-2014-0195).

    The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors that trigger an alert condition (CVE-2014-0198).

    The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value (CVE-2014-3470).

    The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the POODLE issue (CVE-2014-3566).

    The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshake to a no-ssl3 application with certain error handling. NOTE: this issue became relevant after the CVE-2014-3568 fix (CVE-2014-3569).

    The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square of a BIGNUM value, which might make it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and crypto/bn/bn_asm.c (CVE-2014-3570).

    The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger a loss of forward secrecy by omitting the ServerKeyExchange message (CVE-2014-3572).

    OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k does not enforce certain constraints on certificate data, which allows remote attackers to defeat a fingerprint-based certificate-blacklist protection mechanism by including crafted data within a certificate's unsigned portion, related to crypto/asn1/a_verify.c, crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c (CVE-2014-8275).

    The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the FREAK issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations (CVE-2015-0204).

    Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed Elliptic Curve (EC) private-key file that is improperly handled during import (CVE-2015-0209).

    The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service (invalid write operation and memory corruption) by leveraging an application that relies on ASN.1 structure reuse (CVE-2015-0287).

    The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an application that processes arbitrary PKCS#7 data and providing malformed data with ASN.1 encoding, related to crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c (CVE-2015-0289).

    The updated packages have been upgraded to the 1.0.1m version where these security flaws has been fixed.


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5298 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0076 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0195 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0198 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0221 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3470 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3569 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3570 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3571 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3572 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8275 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0204 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0205 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0206 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0209 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0286 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0287 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0288 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0289 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0293 http://openssl.org/news/secadv_20150108.txt http://openssl.org/news/secadv_20150319.txt


    Updated Packages:

    Mandriva Business Server 2/X86_64: 324a85f7e1165ab02881e44dbddaf599 mbs2/x86_64/lib64openssl1.0.0-1.0.1m-1.mbs2.x86_64.rpm 9c0bfb6ebd43cb6d81872abf71b4f85f mbs2/x86_64/lib64openssl-devel-1.0.1m-1.mbs2.x86_64.rpm 58df54e72ca7270210c7d8dd23df402b mbs2/x86_64/lib64openssl-engines1.0.0-1.0.1m-1.mbs2.x86_64.rpm b5313ffb5baaa65aea05eb05486d309a mbs2/x86_64/lib64openssl-static-devel-1.0.1m-1.mbs2.x86_64.rpm a9890ce4c33630cb9e00f3b2910dd784 mbs2/x86_64/openssl-1.0.1m-1.mbs2.x86_64.rpm 521297a5fe26e2de0c1222d8d03382d1 mbs2/SRPMS/openssl-1.0.1m-1.mbs2.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. You can obtain the GPG public key of the Mandriva Security Team by executing:

    gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

    You can view other update advisories for Mandriva Linux at:

    http://www.mandriva.com/en/support/security/advisories/

    If you want to report vulnerabilities, please contact

    security_(at)_mandriva.com


    Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux)

    iD8DBQFVFTm1mqjQ0CJFipgRAoYFAKCaubn00colzVNnUBFjSElyDptGMQCfaGoS kz0ex6eI6hA6qSwklA2NoXY= =GYjX -----END PGP SIGNATURE----- .

    Release Date: 2015-08-24 Last Updated: 2015-08-24

    Potential Security Impact: Remote unauthorized modification, unauthorized access, or unauthorized disclosure of information.

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Matrix Operating Environment. The vulnerabilities could be exploited remotely resulting in unauthorized modification, unauthorized access, or unauthorized disclosure of information.

    References:

    CVE-2010-5107 CVE-2013-0248 CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 CVE-2014-1692 CVE-2014-3523 CVE-2014-3569 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-8142 CVE-2014-8275 CVE-2014-9427 CVE-2014-9652 CVE-2014-9653 CVE-2014-9705 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 CVE-2015-0207 CVE-2015-0208 CVE-2015-0209 CVE-2015-0231 CVE-2015-0232 CVE-2015-0273 CVE-2015-0285 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0290 CVE-2015-0291 CVE-2015-0292 CVE-2015-0293 CVE-2015-1787 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-2134 CVE-2015-2139 CVE-2015-2140 CVE-2015-2301 CVE-2015-2331 CVE-2015-2348 CVE-2015-2787 CVE-2015-3113 CVE-2015-5122 CVE-2015-5123 CVE-2015-5402 CVE-2015-5403 CVE-2015-5404 CVE-2015-5405 CVE-2015-5427 CVE-2015-5428 CVE-2015-5429 CVE-2015-5430 CVE-2015-5431 CVE-2015-5432 CVE-2015-5433

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Matrix Operating Environment impacted software components and versions:

    HP Systems Insight Manager (SIM) prior to version 7.5.0 HP System Management Homepage (SMH) prior to version 7.5.0 HP Version Control Agent (VCA) prior to version 7.5.0 HP Version Control Repository Manager (VCRM) prior to version 7.5.0 HP Insight Orchestration prior to version 7.5.0 HP Virtual Connect Enterprise Manager (VCEM) prior to version 7.5.0

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2010-5107 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-0248 (AV:L/AC:M/Au:N/C:N/I:P/A:P) 3.3 CVE-2014-0118 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2014-0226 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2014-0231 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-1692 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-3523 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-3569 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-3570 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2014-3571 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-3572 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2014-8142 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-8275 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2014-9427 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9652 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-9653 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9705 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-0204 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2015-0205 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2015-0206 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0207 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0208 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2015-0209 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2015-0231 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-0232 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2015-0273 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-0285 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2015-0286 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0287 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0288 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0289 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0290 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0291 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-0292 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-0293 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-1787 (AV:N/AC:H/Au:N/C:N/I:N/A:P) 2.6 CVE-2015-1788 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2015-1789 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2015-1790 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-1791 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2015-1792 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-2134 (AV:N/AC:M/Au:S/C:P/I:P/A:P) 6.0 CVE-2015-2139 (AV:N/AC:M/Au:S/C:P/I:N/A:N) 3.5 CVE-2015-2140 (AV:N/AC:M/Au:S/C:P/I:P/A:N) 4.9 CVE-2015-2301 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-2331 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-2348 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2015-2787 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2015-3113 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2015-5122 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2015-5123 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2015-5402 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9 CVE-2015-5403 (AV:N/AC:M/Au:S/C:P/I:N/A:N) 3.5 CVE-2015-5404 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2015-5405 (AV:N/AC:M/Au:S/C:P/I:P/A:P) 6.0 CVE-2015-5427 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2015-5428 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2015-5429 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2015-5430 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2015-5431 (AV:N/AC:M/Au:S/C:P/I:P/A:N) 4.9 CVE-2015-5432 (AV:N/AC:L/Au:N/C:P/I:P/A:N) 6.4 CVE-2015-5433 (AV:N/AC:M/Au:S/C:P/I:N/A:N) 3.5 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has made the following software updates available to resolve the vulnerabilities in the impacted versions of HP Matrix Operating Environment

    HP Matrix Operating Environment 7.5.0 is only available on DVD. Please order the latest version of the HP Matrix Operating Environment 7.5.0 DVD #2 ISO from the following location:

    http://www.hp.com/go/insightupdates

    Choose the orange Select button. This presents the HP Insight Management Media order page. Choose Insight Management 7.5 DVD-2-ZIP August 2015 from the Software specification list. Fill out the rest of the form and submit it.

    HP has addressed these vulnerabilities for the affected software components bundled with the HP Matrix Operating Environment in the following HP Security Bulletins.

    HP Matrix Operating Environment component HP Security Bulletin Number Security Bulletin Location

    HP Systems Insight Manager (SIM) HPSBMU03394 HPSBMU03394 https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04762744

    HP System Management Homepage (SMH) HPSBMU03380 http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04746490&la ng=en-us&cc=

    HP Version Control Agent (VCA) HPSBMU03397 https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04765169

    HP Version Control Repository Manager (VCRM) HPSBMU03396 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr _na-c04765115

    HP Virtual Connect Enterprise Manager (VCEM) SDK HPSBMU03413 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr _na-c04774021

    HISTORY Version:1 (rev.1) - 24 August 2015 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: openssl security update Advisory ID: RHSA-2015:0066-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-0066.html Issue date: 2015-01-20 Updated on: 2015-01-21 CVE Names: CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-8275 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 =====================================================================

    1. Summary:

    Updated openssl packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7.

    Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

    1. Description:

    OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL), Transport Layer Security (TLS), and Datagram Transport Layer Security (DTLS) protocols, as well as a full-strength, general purpose cryptography library.

    A NULL pointer dereference flaw was found in the DTLS implementation of OpenSSL. A remote attacker could send a specially crafted DTLS message, which would cause an OpenSSL server to crash. (CVE-2014-3571)

    A memory leak flaw was found in the way the dtls1_buffer_record() function of OpenSSL parsed certain DTLS messages. A remote attacker could send multiple specially crafted DTLS messages to exhaust all available memory of a DTLS server. (CVE-2015-0206)

    It was found that OpenSSL's BigNumber Squaring implementation could produce incorrect results under certain special conditions. This flaw could possibly affect certain OpenSSL library functionality, such as RSA blinding. Note that this issue occurred rarely and with a low probability, and there is currently no known way of exploiting it. (CVE-2014-3570)

    It was discovered that OpenSSL would perform an ECDH key exchange with a non-ephemeral key even when the ephemeral ECDH cipher suite was selected. A malicious server could make a TLS/SSL client using OpenSSL use a weaker key exchange method than the one requested by the user. (CVE-2014-3572)

    It was discovered that OpenSSL would accept ephemeral RSA keys when using non-export RSA cipher suites. A malicious server could make a TLS/SSL client using OpenSSL use a weaker key exchange method. (CVE-2015-0204)

    Multiple flaws were found in the way OpenSSL parsed X.509 certificates. An attacker could use these flaws to modify an X.509 certificate to produce a certificate with a different fingerprint without invalidating its signature, and possibly bypass fingerprint-based blacklisting in applications. (CVE-2014-8275)

    It was found that an OpenSSL server would, under certain conditions, accept Diffie-Hellman client certificates without the use of a private key. An attacker could use a user's client certificate to authenticate as that user, without needing the private key. (CVE-2015-0205)

    All OpenSSL users are advised to upgrade to these updated packages, which contain a backported patch to mitigate the above issues. For the update to take effect, all services linked to the OpenSSL library (such as httpd and other SSL-enabled services) must be restarted or the system rebooted.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1180184 - CVE-2015-0204 openssl: Only allow ephemeral RSA keys in export ciphersuites 1180185 - CVE-2014-3572 openssl: ECDH downgrade bug fix 1180187 - CVE-2014-8275 openssl: Fix various certificate fingerprint issues 1180234 - CVE-2014-3571 openssl: DTLS segmentation fault in dtls1_get_record 1180235 - CVE-2015-0206 openssl: DTLS memory leak in dtls1_buffer_record 1180239 - CVE-2015-0205 openssl: DH client certificates accepted without verification 1180240 - CVE-2014-3570 openssl: Bignum squaring may produce incorrect results

    1. Package List:

    Red Hat Enterprise Linux Desktop (v. 6):

    Source: openssl-1.0.1e-30.el6_6.5.src.rpm

    i386: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm

    x86_64: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux Desktop Optional (v. 6):

    i386: openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm openssl-perl-1.0.1e-30.el6_6.5.i686.rpm openssl-static-1.0.1e-30.el6_6.5.i686.rpm

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-static-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: openssl-1.0.1e-30.el6_6.5.src.rpm

    x86_64: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-static-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: openssl-1.0.1e-30.el6_6.5.src.rpm

    i386: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm

    ppc64: openssl-1.0.1e-30.el6_6.5.ppc.rpm openssl-1.0.1e-30.el6_6.5.ppc64.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.ppc.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.ppc64.rpm openssl-devel-1.0.1e-30.el6_6.5.ppc.rpm openssl-devel-1.0.1e-30.el6_6.5.ppc64.rpm

    s390x: openssl-1.0.1e-30.el6_6.5.s390.rpm openssl-1.0.1e-30.el6_6.5.s390x.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.s390.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.s390x.rpm openssl-devel-1.0.1e-30.el6_6.5.s390.rpm openssl-devel-1.0.1e-30.el6_6.5.s390x.rpm

    x86_64: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-perl-1.0.1e-30.el6_6.5.i686.rpm openssl-static-1.0.1e-30.el6_6.5.i686.rpm

    ppc64: openssl-debuginfo-1.0.1e-30.el6_6.5.ppc64.rpm openssl-perl-1.0.1e-30.el6_6.5.ppc64.rpm openssl-static-1.0.1e-30.el6_6.5.ppc64.rpm

    s390x: openssl-debuginfo-1.0.1e-30.el6_6.5.s390x.rpm openssl-perl-1.0.1e-30.el6_6.5.s390x.rpm openssl-static-1.0.1e-30.el6_6.5.s390x.rpm

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-static-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: openssl-1.0.1e-30.el6_6.5.src.rpm

    i386: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm

    x86_64: openssl-1.0.1e-30.el6_6.5.i686.rpm openssl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.5.i686.rpm openssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: openssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm openssl-perl-1.0.1e-30.el6_6.5.i686.rpm openssl-static-1.0.1e-30.el6_6.5.i686.rpm

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm openssl-static-1.0.1e-30.el6_6.5.x86_64.rpm

    Red Hat Enterprise Linux Client (v. 7):

    Source: openssl-1.0.1e-34.el7_0.7.src.rpm

    x86_64: openssl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-libs-1.0.1e-34.el7_0.7.i686.rpm openssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux Client Optional (v. 7):

    x86_64: openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-devel-1.0.1e-34.el7_0.7.i686.rpm openssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm openssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-static-1.0.1e-34.el7_0.7.i686.rpm openssl-static-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode (v. 7):

    Source: openssl-1.0.1e-34.el7_0.7.src.rpm

    x86_64: openssl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-libs-1.0.1e-34.el7_0.7.i686.rpm openssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode Optional (v. 7):

    x86_64: openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-devel-1.0.1e-34.el7_0.7.i686.rpm openssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm openssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-static-1.0.1e-34.el7_0.7.i686.rpm openssl-static-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: openssl-1.0.1e-34.el7_0.7.src.rpm

    ppc64: openssl-1.0.1e-34.el7_0.7.ppc64.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.ppc.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.ppc64.rpm openssl-devel-1.0.1e-34.el7_0.7.ppc.rpm openssl-devel-1.0.1e-34.el7_0.7.ppc64.rpm openssl-libs-1.0.1e-34.el7_0.7.ppc.rpm openssl-libs-1.0.1e-34.el7_0.7.ppc64.rpm

    s390x: openssl-1.0.1e-34.el7_0.7.s390x.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.s390.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.s390x.rpm openssl-devel-1.0.1e-34.el7_0.7.s390.rpm openssl-devel-1.0.1e-34.el7_0.7.s390x.rpm openssl-libs-1.0.1e-34.el7_0.7.s390.rpm openssl-libs-1.0.1e-34.el7_0.7.s390x.rpm

    x86_64: openssl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-devel-1.0.1e-34.el7_0.7.i686.rpm openssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm openssl-libs-1.0.1e-34.el7_0.7.i686.rpm openssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64: openssl-debuginfo-1.0.1e-34.el7_0.7.ppc.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.ppc64.rpm openssl-perl-1.0.1e-34.el7_0.7.ppc64.rpm openssl-static-1.0.1e-34.el7_0.7.ppc.rpm openssl-static-1.0.1e-34.el7_0.7.ppc64.rpm

    s390x: openssl-debuginfo-1.0.1e-34.el7_0.7.s390.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.s390x.rpm openssl-perl-1.0.1e-34.el7_0.7.s390x.rpm openssl-static-1.0.1e-34.el7_0.7.s390.rpm openssl-static-1.0.1e-34.el7_0.7.s390x.rpm

    x86_64: openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-static-1.0.1e-34.el7_0.7.i686.rpm openssl-static-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 7):

    Source: openssl-1.0.1e-34.el7_0.7.src.rpm

    x86_64: openssl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-devel-1.0.1e-34.el7_0.7.i686.rpm openssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm openssl-libs-1.0.1e-34.el7_0.7.i686.rpm openssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 7):

    x86_64: openssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm openssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm openssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm openssl-static-1.0.1e-34.el7_0.7.i686.rpm openssl-static-1.0.1e-34.el7_0.7.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2014-3570 https://access.redhat.com/security/cve/CVE-2014-3571 https://access.redhat.com/security/cve/CVE-2014-3572 https://access.redhat.com/security/cve/CVE-2014-8275 https://access.redhat.com/security/cve/CVE-2015-0204 https://access.redhat.com/security/cve/CVE-2015-0205 https://access.redhat.com/security/cve/CVE-2015-0206 https://access.redhat.com/security/updates/classification/#moderate https://www.openssl.org/news/secadv_20150108.txt

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFUwCWMXlSAg2UNWIIRAioBAJ4/RjG4OGXzCwg+PJJWNqyvahe3rQCeNE+X ENFobdxQdJ+gVAiRe8Qf54A= =wyAg -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "powerlinux 7r2",
            "scope": "eq",
            "trust": 1.2,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communications core session manager",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "7.3.5"
          },
          {
            "_id": null,
            "model": "communications core session manager",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "7.2.5"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0e"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0d"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0a"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1f"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0k"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1d"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1c"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1h"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0j"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1j"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0l"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1e"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0m"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0g"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1g"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0c"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0o"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0b"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0f"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0n"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1a"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0i"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1i"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0h"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1b"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "ibm",
            "version": "7200"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "ibm",
            "version": "7700"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "ibm",
            "version": "7800"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "ibm",
            "version": "7100"
          },
          {
            "_id": null,
            "model": "hpe systems insight manager",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "hp thinpro linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "(x86)"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle secure global desktop 4.63"
          },
          {
            "_id": null,
            "model": "fusion middleware",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle mobile security suite mss 3.0"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle secure global desktop 4.71"
          },
          {
            "_id": null,
            "model": "hp virtual connect enterprise manager sdk",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "hpe server migration pack",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.0p"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "hpe insight control",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "none"
          },
          {
            "_id": null,
            "model": "mysql",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "5.6.22 and earlier"
          },
          {
            "_id": null,
            "model": "hpe version control repository manager",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "hp version control agent",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "hpe matrix operating environment",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "hp thinpro linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "(arm)"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.1k"
          },
          {
            "_id": null,
            "model": "hpe insight control",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "server provisioning"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle secure global desktop 5.1"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "7400"
          },
          {
            "_id": null,
            "model": "power express",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "5200"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "5700"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "7300"
          },
          {
            "_id": null,
            "model": "powerlinux 7r1",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.1"
          },
          {
            "_id": null,
            "model": "cognos controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5.1"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2.0.5"
          },
          {
            "_id": null,
            "model": "mate collector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ata series analog terminal adaptor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1900"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7600"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "video surveillance series ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "bladecenter advanced management module 25r5778",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "power system s822",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.186"
          },
          {
            "_id": null,
            "model": "telepresence server on virtual machine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "bladecenter -s",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1948"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "783.00"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5205635"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.6"
          },
          {
            "_id": null,
            "model": "upward integration modules scvmm add-in",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.80"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "flex system p270 compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7954-24x)0"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x22025850"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "6"
          },
          {
            "_id": null,
            "model": "power systems e870",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "sbr carrier",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.50"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4.1.3"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "idataplex dx360 m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79120"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.5"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.8.780"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "tandberg codian isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32400"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "telepresence mcu",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "85100"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "(x86)4.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.2"
          },
          {
            "_id": null,
            "model": "ip interoperability and collaboration system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0p",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "edge digital media player",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3400"
          },
          {
            "_id": null,
            "model": "systems insight manager 7.3.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "flex system p260 compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7895-23x)0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.0.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.3"
          },
          {
            "_id": null,
            "model": "junos os 13.3r6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4.19"
          },
          {
            "_id": null,
            "model": "telepresence server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70104.1"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "prime security manager 04.8 qa08",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.70"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.21"
          },
          {
            "_id": null,
            "model": "ns oncommand core package",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "sametime",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.0.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.7"
          },
          {
            "_id": null,
            "model": "netscaler t1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.0-68"
          },
          {
            "_id": null,
            "model": "prime license manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems 350.c0",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0.842"
          },
          {
            "_id": null,
            "model": "workflow for bluemix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5750"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "flex system manager node types",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79550"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.0.870"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.2-77"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "telepresence te software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "-0"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "real-time compression appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.9.1.11"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x350073830"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "7"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1"
          },
          {
            "_id": null,
            "model": "prime network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "8.2.2.2"
          },
          {
            "_id": null,
            "model": "network configuration and change management service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "systems insight manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "prime collaboration assurance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0.840"
          },
          {
            "_id": null,
            "model": "data ontap smi-s agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "systems insight manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "telepresence content server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37001.1"
          },
          {
            "_id": null,
            "model": "tandberg codian mse model",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "83200"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "local collector appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "2.2.8"
          },
          {
            "_id": null,
            "model": "power system s814",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.2.77"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x310025820"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.21"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.4"
          },
          {
            "_id": null,
            "model": "service delivery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.4"
          },
          {
            "_id": null,
            "model": "data ontap operating in 7-mode",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2.3"
          },
          {
            "_id": null,
            "model": "flex system fc3171 8gb san switch and san pass-thru",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.2.00"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.1.0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.40"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0m",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "power systems 350.b1",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4.1.8"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.27"
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x24087380"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "power systems 350.e0",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "prime lan management solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.21"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "command center appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.96"
          },
          {
            "_id": null,
            "model": "flashsystem 9848-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1k",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50001.1"
          },
          {
            "_id": null,
            "model": "bladecenter -t",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8720"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1.1.2"
          },
          {
            "_id": null,
            "model": "media services interface",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems 350.e1",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.6.156"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2.0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.00"
          },
          {
            "_id": null,
            "model": "netscaler gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1i",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.12"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.2"
          },
          {
            "_id": null,
            "model": "unified attendant console advanced",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2.0.8"
          },
          {
            "_id": null,
            "model": "proactive network operations center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "(x86)4.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.6"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "sterling connect:express for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4.6"
          },
          {
            "_id": null,
            "model": "ns oncommand core package",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.10"
          },
          {
            "_id": null,
            "model": "system management homepage c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.186"
          },
          {
            "_id": null,
            "model": "jabber for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "enterprise content delivery service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.5"
          },
          {
            "_id": null,
            "model": "adaptive security appliance software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "8.4(7.26)"
          },
          {
            "_id": null,
            "model": "real-time compression appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.8.0.10"
          },
          {
            "_id": null,
            "model": "bladecenter -s",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8886"
          },
          {
            "_id": null,
            "model": "unified sip proxy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4.19"
          },
          {
            "_id": null,
            "model": "telepresence advanced media gateway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "data ontap operating in 7-mode",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.1.4"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "unified attendant console premium edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "tandberg codian isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32100"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4"
          },
          {
            "_id": null,
            "model": "initiate master data service provider hub",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.7"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.3"
          },
          {
            "_id": null,
            "model": "firesight system software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.4.1.2"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "power systems 350.a0",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.14"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager sdk",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "systems insight manager sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2.0.3"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.3"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.0.820"
          },
          {
            "_id": null,
            "model": "sametime",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5.2.1"
          },
          {
            "_id": null,
            "model": "adaptive security appliance software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "9.1(5.106)"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2.0.3"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4.1.8"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.1"
          },
          {
            "_id": null,
            "model": "systems insight manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4.1.8"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x22079060"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.11"
          },
          {
            "_id": null,
            "model": "upward integration modules hardware management pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "5"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.4"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "system type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x3850x638370"
          },
          {
            "_id": null,
            "model": "mq client for hp integrity nonstop server supportpac mqc8",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "-0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "general parallel file system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.0"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x88042590"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "upward integration modules integrated installer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "netscaler application delivery controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1"
          },
          {
            "_id": null,
            "model": "bladecenter -e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7967"
          },
          {
            "_id": null,
            "model": "dx360 m4 water cooled type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79180"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "initiate master data service patient hub",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.68"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.00"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.02"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0.102"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.4"
          },
          {
            "_id": null,
            "model": "anyres live",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3.4"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.22"
          },
          {
            "_id": null,
            "model": "application policy infrastructure controller 1.0",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.1.830"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "820.03"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "bladecenter -h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8852"
          },
          {
            "_id": null,
            "model": "unified attendant console business edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "nextscale nx360 m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "54550"
          },
          {
            "_id": null,
            "model": "bladecenter -ht",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8750"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5205577"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.15-210"
          },
          {
            "_id": null,
            "model": "websphere mq for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v6"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.13"
          },
          {
            "_id": null,
            "model": "tandberg codian isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32200"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "security proventia network enterprise scanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.2"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.7"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.9.1"
          },
          {
            "_id": null,
            "model": "jabber video for telepresence",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0-103"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.12.201"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.16"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0.95"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.4"
          },
          {
            "_id": null,
            "model": "prime network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "8.1.3.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.7.770"
          },
          {
            "_id": null,
            "model": "prime collaboration deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.81"
          },
          {
            "_id": null,
            "model": "dx series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0-95"
          },
          {
            "_id": null,
            "model": "virtualization experience media engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2.0.8"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.4"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.00"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "ace30 application control engine module 3.0 a5",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "junos os 12.3r10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "unified computing system b-series servers",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "sterling connect:express for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.0.11"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0.96"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x365079150"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1.0.6"
          },
          {
            "_id": null,
            "model": "data ontap operating in 7-mode",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.7"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "(x86)4.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.2.127"
          },
          {
            "_id": null,
            "model": "jabber software development kit",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.50"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.800"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.8"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "firesight system software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.4.0.2"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "cms r17 r4",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.21"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x375087220"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.60"
          },
          {
            "_id": null,
            "model": "bladecenter -e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1881"
          },
          {
            "_id": null,
            "model": "flex system fc3171 8gb san switch and san pass-thru",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.0.00"
          },
          {
            "_id": null,
            "model": "powerlinux 7r4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.1-73"
          },
          {
            "_id": null,
            "model": "infosphere master data management patient hub",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.4.1"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.8.780"
          },
          {
            "_id": null,
            "model": "power systems 350.b0",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for images",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.0"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "upward integration modules scvmm add-in",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "service delivery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.4"
          },
          {
            "_id": null,
            "model": "sametime",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.0.0"
          },
          {
            "_id": null,
            "model": "identity service engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.15"
          },
          {
            "_id": null,
            "model": "cms r17",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager sdk",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "flex system fc3171 8gb san switch and san pass-thru",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.5.03.00"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "wag310g residential gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5"
          },
          {
            "_id": null,
            "model": "power ese",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.0-14"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.4"
          },
          {
            "_id": null,
            "model": "cognos controller if1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1.1.3"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "820.02"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.15"
          },
          {
            "_id": null,
            "model": "data ontap operating in 7-mode",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.00"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.11"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0o",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.1.7"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.0.860"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2"
          },
          {
            "_id": null,
            "model": "linux enterprise server for vmware sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "system management homepage b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5.146"
          },
          {
            "_id": null,
            "model": "email security appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "application policy infrastructure controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1.1(0.625)"
          },
          {
            "_id": null,
            "model": "bladecenter -s",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7779"
          },
          {
            "_id": null,
            "model": "agent desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10.0(2)"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x88079030"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.0.870"
          },
          {
            "_id": null,
            "model": "flex system p260 compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7895-22x)0"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x24087370"
          },
          {
            "_id": null,
            "model": "system management homepage b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.2.77"
          },
          {
            "_id": null,
            "model": "snapdrive for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "jabber voice for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "onepk all-in-one vm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3"
          },
          {
            "_id": null,
            "model": "idp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "52056340"
          },
          {
            "_id": null,
            "model": "ctpos 7.0r4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "unified attendant console department edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0.840"
          },
          {
            "_id": null,
            "model": "system management homepage a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.11.197"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "prime data center network manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.14"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.8"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.3"
          },
          {
            "_id": null,
            "model": "power system s824l",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.15210"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "network performance analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.64"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0.0"
          },
          {
            "_id": null,
            "model": "system m4 hd type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x365054600"
          },
          {
            "_id": null,
            "model": "rational software architect for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.80"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.30"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "(x86)5.0"
          },
          {
            "_id": null,
            "model": "infosphere master data management provider hub",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.8"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.0"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.116"
          },
          {
            "_id": null,
            "model": "rational software architect for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "power express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "560"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "version control repository manager 7.4.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "power 795",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.3.740"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.20"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "video surveillance series ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70000"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "systems insight manager update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.31"
          },
          {
            "_id": null,
            "model": "ddos secure",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage 7.4.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.6"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.51"
          },
          {
            "_id": null,
            "model": "telepresence server on multiparty media",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3204.1"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "flashsystem 9846-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "video surveillance series ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "60000"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.21"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "cms r17 r3",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x22279160"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0i",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "power system s822l",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5504667"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.10"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5205587"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "ringmaster appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.60"
          },
          {
            "_id": null,
            "model": "systems insight manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4.19"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2.0.5"
          },
          {
            "_id": null,
            "model": "ctpview 7.1r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.1"
          },
          {
            "_id": null,
            "model": "cognos controller interim fix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.0.1"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.13"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.41"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.0"
          },
          {
            "_id": null,
            "model": "unified ip conference phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "88310"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "bladecenter js22",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7998-61x)0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "clustered data ontap",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.3.0.5"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "vgw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.0.820"
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1x8664"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.5"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.20"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.10"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.32"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.2.835"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "system m4 bd type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x365054660"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4.19"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.15"
          },
          {
            "_id": null,
            "model": "upward integration modules hardware management pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.3"
          },
          {
            "_id": null,
            "model": "src series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence supervisor mse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "80500"
          },
          {
            "_id": null,
            "model": "iptv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "upward integration modules integrated installer",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5.3"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.12"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.11"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x325025830"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3.3"
          },
          {
            "_id": null,
            "model": "ns oncommand core package",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0.2.106"
          },
          {
            "_id": null,
            "model": "web security appliance 9.0.0 -fcs",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "systems insight manager sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "bladecenter js23",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7778-23x)0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.1.830"
          },
          {
            "_id": null,
            "model": "service delivery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "telepresence mcu",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "42000"
          },
          {
            "_id": null,
            "model": "hosted collaboration mediation fulfillment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "application networking manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage 7.3.2.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "socialminer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "3"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.14.20"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5.760"
          },
          {
            "_id": null,
            "model": "video surveillance media server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "data ontap smi-s agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "telepresence mcu",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "84200"
          },
          {
            "_id": null,
            "model": "physical access gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.5"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "52056330"
          },
          {
            "_id": null,
            "model": "flex system fc3171 8gb san switch and san pass-thru",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.3.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.3"
          },
          {
            "_id": null,
            "model": "telepresence video communication server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "prime network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "bladecenter js43 with feature code",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7778-23x8446)0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "telepresence sx series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.51"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.4"
          },
          {
            "_id": null,
            "model": "system management homepage b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.186"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x330073820"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "meetingplace",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "2"
          },
          {
            "_id": null,
            "model": "power system s824",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ctp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7500"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.9.790"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.0.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.1.730"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.12"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x363071580"
          },
          {
            "_id": null,
            "model": "power systems e880",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ctpos 7.1r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2.0.5"
          },
          {
            "_id": null,
            "model": "mq appliance m2000",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0j",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "35000"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.1"
          },
          {
            "_id": null,
            "model": "flex system p460 compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7895-42x)0"
          },
          {
            "_id": null,
            "model": "initiate master data service patient hub",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.7"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1.0.5"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "expressway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.5"
          },
          {
            "_id": null,
            "model": "bladecenter t advanced management module 32r0835",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.801"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.2"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.10"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "flex system manager node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8734-"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.3.0.5"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.20"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.11"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "systems insight manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "edge digital media player",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2.0.3"
          },
          {
            "_id": null,
            "model": "mobile wireless transport manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.6"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "mate design",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x24078630"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.61"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4.143"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x375087330"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.20"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x24089560"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.90"
          },
          {
            "_id": null,
            "model": "powervu d9190 conditional access manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.02"
          },
          {
            "_id": null,
            "model": "bladecenter js12 express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7998-60x)0"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1j",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "bladecenter -t",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8730"
          },
          {
            "_id": null,
            "model": "cloudbridge",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4.1.8"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2.0.3"
          },
          {
            "_id": null,
            "model": "data ontap operating in 7-mode",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.3.132"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x353071600"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1.0.7"
          },
          {
            "_id": null,
            "model": "adaptive security appliance software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "9.0(4.29)"
          },
          {
            "_id": null,
            "model": "flashsystem 9840-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "840"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "mate live",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence integrator c series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3.0.5"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.0-12"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.50"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.9"
          },
          {
            "_id": null,
            "model": "bladecenter -h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7989"
          },
          {
            "_id": null,
            "model": "websphere mq client for hp integrity nonstop server supportpac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "-0"
          },
          {
            "_id": null,
            "model": "mobile security suite mss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0.1.104"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1.0.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1.0.7"
          },
          {
            "_id": null,
            "model": "nsm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.20"
          },
          {
            "_id": null,
            "model": "cognos controller if3",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.10"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.11"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1.0.6"
          },
          {
            "_id": null,
            "model": "flex system p24l compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.1.0"
          },
          {
            "_id": null,
            "model": "bladecenter -ht",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8740"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.0.860"
          },
          {
            "_id": null,
            "model": "websphere mq for hp nonstop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "power system s812l",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.10"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.2"
          },
          {
            "_id": null,
            "model": "mobile messaging and m2m client pack (eclipse paho mqtt c client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "cognos controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "cognos controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.1"
          },
          {
            "_id": null,
            "model": "prime collaboration provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "pulse secure",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "initiate master data service provider hub",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "flex system fc3171 8gb san switch and san pass-thru",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1.00"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x375087180"
          },
          {
            "_id": null,
            "model": "flex system manager node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8731-"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.8"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5.146"
          },
          {
            "_id": null,
            "model": "idataplex dx360 m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79130"
          },
          {
            "_id": null,
            "model": "systems insight manager sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.1.73"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "4"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "telepresence mcu",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "45000"
          },
          {
            "_id": null,
            "model": "telepresence isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32410"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0n",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system m5 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x310054570"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "783.01"
          },
          {
            "_id": null,
            "model": "telepresence server on multiparty media",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3104.1"
          },
          {
            "_id": null,
            "model": "telepresence ex series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1"
          },
          {
            "_id": null,
            "model": "webex meetings for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.0"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.10"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1841"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "server migration pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "cognos controller fp1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "sterling connect:express for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.3"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "adaptive security appliance software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "9.2(3.1)"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "(x86)4.4"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.7"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.3"
          },
          {
            "_id": null,
            "model": "cognos controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "systems insight manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.8.179"
          },
          {
            "_id": null,
            "model": "as infinity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pexip",
            "version": "8"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "junos os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x355079140"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.20"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.16"
          },
          {
            "_id": null,
            "model": "server migration pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "810.01"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0k",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "power systems 350.d0",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "bladecenter -h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1886"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x375087520"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.40"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.2"
          },
          {
            "_id": null,
            "model": "vds service broker",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence conductor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "74.90"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "d9036 modular encoding platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35001.1"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2.0.5"
          },
          {
            "_id": null,
            "model": "video surveillance 4300e/4500e high-definition ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.40"
          },
          {
            "_id": null,
            "model": "system type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x3950x638370"
          },
          {
            "_id": null,
            "model": "flex system p260 compute node /fc efd9",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "sametime",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5.2.0"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.2"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "power",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5950"
          },
          {
            "_id": null,
            "model": "sterling connect:express for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.0"
          },
          {
            "_id": null,
            "model": "cognos controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "junos os 12.3x48-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "bladecenter -e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8677"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.2"
          },
          {
            "_id": null,
            "model": "cognos controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.0.5"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "video surveillance ptz ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "anyconnect secure mobility client for ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "004.000(1233)"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.2.835"
          },
          {
            "_id": null,
            "model": "real-time compression appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.2.10"
          },
          {
            "_id": null,
            "model": "telepresence serial gateway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0.841"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.3"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1.0.7"
          },
          {
            "_id": null,
            "model": "ctpos 6.6r5",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "webex meetings server 2.5mr2",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "junos os 13.2r8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "wireless lan controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2.5"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1.0.103"
          },
          {
            "_id": null,
            "model": "open systems snapvault",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "780.01"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.9"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "740.52"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1.1"
          },
          {
            "_id": null,
            "model": "unified attendant console enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "power express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "550"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netscaler service delivery appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for os deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.22"
          },
          {
            "_id": null,
            "model": "power express f/c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5504965"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.2.7"
          },
          {
            "_id": null,
            "model": "telepresence server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "87104.1"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "telepresence mcu",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "53000"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.3.0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.0.121"
          },
          {
            "_id": null,
            "model": "ios 15.5 s",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "prime performance manager for sps ppm sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1.0.7"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "telepresence mx series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "session border controller for enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.7.770"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "350.70"
          },
          {
            "_id": null,
            "model": "telepresence isdn gw mse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "83210"
          },
          {
            "_id": null,
            "model": "ucs central",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence profile series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1.0.6"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.31"
          },
          {
            "_id": null,
            "model": "flex system compute node type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x44079170"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.1"
          },
          {
            "_id": null,
            "model": "unified communications domain manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10.1.2"
          },
          {
            "_id": null,
            "model": "flex system p460 compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "(7895-43x)0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.3"
          },
          {
            "_id": null,
            "model": "systems insight manager 7.4.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2.0.8"
          },
          {
            "_id": null,
            "model": "dx360 m4 water cooled type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79190"
          },
          {
            "_id": null,
            "model": "im and presence service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4.750"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.3.0.5"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.1"
          },
          {
            "_id": null,
            "model": "nac guest server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system m5 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x325054580"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2.0.8"
          },
          {
            "_id": null,
            "model": "power systems",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "770.00"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.4"
          },
          {
            "_id": null,
            "model": "tivoli provisioning manager for images system edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x7.1.1.0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10.800"
          },
          {
            "_id": null,
            "model": "thinpro linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "(x86)5.1"
          },
          {
            "_id": null,
            "model": "cloud object store",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1h",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.9.790"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "71941"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-0205"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:openssl:openssl",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:oracle:integrated_lights_out_manager_firmware",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:mysql",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:communications_core_session_manager",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:fusion_middleware",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:oracle:solaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:virtualization_secure_global_desktop",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:thinpro_linux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:version_control_agent",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:virtual_connect_enterprise_manager_sdk",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:insight_control",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:matrix_operating_environment",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:server_migration_pack",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:systems_insight_manager",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:version_control_repository_manager",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:system_management_homepage",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Karthikeyan Bhargavan of the PROSECCO team at INRIA.",
        "sources": [
          {
            "db": "BID",
            "id": "71941"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2015-0205",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2015-0205",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.9,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-0205",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2015-0205",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "VULMON",
                "id": "CVE-2015-0205",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-0205"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-0205"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a CertificateVerify message, which allows remote attackers to obtain access without knowledge of a private key via crafted TLS Handshake Protocol traffic to a server that recognizes a Certification Authority with DH support. OpenSSL is prone to security-bypass vulnerability. \nSuccessfully exploiting these issues may allow attackers to perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks. \nCorrected:      2015-01-09 00:58:20 UTC (stable/10, 10.1-STABLE)\n                2015-01-14 21:27:46 UTC (releng/10.1, 10.1-RELEASE-p4)\n                2015-01-14 21:27:46 UTC (releng/10.0, 10.0-RELEASE-p16)\n                2015-01-09 01:11:43 UTC (stable/9, 9.3-STABLE)\n                2015-01-14 21:27:46 UTC (releng/9.3, 9.3-RELEASE-p8)\n                2015-01-09 01:11:43 UTC (stable/8, 8.4-STABLE)\n                2015-01-14 21:27:46 UTC (releng/8.4, 8.4-RELEASE-p22)\nCVE Name:       CVE-2014-3571, CVE-2015-0206, CVE-2014-3569, CVE-2014-3572\n                CVE-2015-0204, CVE-2015-0205, CVE-2014-8275, CVE-2014-3570\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:https://security.FreeBSD.org/\u003e.   Background\n\nFreeBSD includes software from the OpenSSL Project. \n\nII.  [CVE-2014-3569] This does not affect\nFreeBSD\u0027s default build. [CVE-2015-0205]\n\nOpenSSL accepts several non-DER-variations of certificate signature\nalgorithm and signature encodings.  OpenSSL also does not enforce a\nmatch between the signature algorithm between the signed and unsigned\nportions of the certificate. [CVE-2014-3570]\n\nIII. [CVE-2015-0206]\n\nA server can remove forward secrecy from the ciphersuite.  [CVE-2014-3572]\n\nA server could present a weak temporary key and downgrade the security of\nthe session.  This only\naffects servers which trust a client certificate authority which issues\ncertificates containing DH keys, which is extremely rare.  [CVE-2015-0205]\n\nBy modifying the contents of the signature algorithm or the encoding of\nthe signature, it is possible to change the certificate\u0027s fingerprint. It also does not affect common revocation mechanisms.  Only\ncustom applications that rely on the uniqueness of the fingerprint\n(e.g. certificate blacklists) may be affected.  [CVE-2014-8275]\n\nIV.  Workaround\n\nNo workaround is available. \n\nV.   Solution\n\nPerform one of the following:\n\n1) Upgrade your vulnerable system to a supported FreeBSD stable or\nrelease / security branch (releng) dated after the correction date. \n\n2) To update your vulnerable system via a binary patch:\n\nSystems running a RELEASE version of FreeBSD on the i386 or amd64\nplatforms can be updated via the freebsd-update(8) utility:\n\n# freebsd-update fetch\n# freebsd-update install\n\n3) To update your vulnerable system via a source code patch:\n\nThe following patches have been verified to apply to the applicable\nFreeBSD release branches. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n[FreeBSD 8.4 and FreeBSD 9.3]\n# fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-9.3.patch\n# fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-9.3.patch.asc\n# gpg --verify openssl-9.3.patch.asc\n\n[FreeBSD 10.0]\n# fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.0.patch\n# fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.0.patch.asc\n# gpg --verify openssl-10.0.patch.asc\n\n[FreeBSD 10.1]\n# fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.1.patch\n# fetch https://security.FreeBSD.org/patches/SA-15:01/openssl-10.1.patch.asc\n# gpg --verify openssl-10.1.patch.asc\n\nb) Apply the patch.  Execute the following commands as root:\n\n# cd /usr/src\n# patch \u003c /path/to/patch\n\nc) Recompile the operating system using buildworld and installworld as\ndescribed in \u003cURL:https://www.FreeBSD.org/handbook/makeworld.html\u003e. \n\nRestart all deamons using the library, or reboot the system. \n\nVI.  Correction details\n\nThe following list contains the correction revision numbers for each\naffected branch. \n\nBranch/path                                                      Revision\n- -------------------------------------------------------------------------\nstable/8/                                                         r276865\nreleng/8.4/                                                       r277195\nstable/9/                                                         r276865\nreleng/9.3/                                                       r277195\nstable/10/                                                        r276864\nreleng/10.0/                                                      r277195\nreleng/10.1/                                                      r277195\n- -------------------------------------------------------------------------\n\nTo see which files were modified by a particular revision, run the\nfollowing command, replacing NNNNNN with the revision number, on a\nmachine with Subversion installed:\n\n# svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base\n\nOr visit the following URL, replacing NNNNNN with the revision number:\n\n\u003cURL:https://svnweb.freebsd.org/base?view=revision\u0026revision=NNNNNN\u003e\n\nVII. \n \n The Montgomery ladder implementation in OpenSSL through 1.0.0l does\n not ensure that certain swap operations have a constant-time behavior,\n which makes it easier for local users to obtain ECDSA nonces via a\n FLUSH+RELOAD cache side-channel attack (CVE-2014-0076). \n \n The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before\n 1.0.1g do not properly handle Heartbeat Extension packets, which allows\n remote attackers to obtain sensitive information from process memory\n via crafted packets that trigger a buffer over-read, as demonstrated\n by reading private keys, related to d1_both.c and t1_lib.c, aka the\n Heartbleed bug (CVE-2014-0160). \n \n The dtls1_reassemble_fragment function in d1_both.c in OpenSSL\n before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does\n not properly validate fragment lengths in DTLS ClientHello messages,\n which allows remote attackers to execute arbitrary code or cause a\n denial of service (buffer overflow and application crash) via a long\n non-initial fragment (CVE-2014-0195). \n \n The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g,\n when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a\n buffer pointer during certain recursive calls, which allows remote\n attackers to cause a denial of service (NULL pointer dereference\n and application crash) via vectors that trigger an alert condition\n (CVE-2014-0198). \n \n The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL\n before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h, when\n an anonymous ECDH cipher suite is used, allows remote attackers to\n cause a denial of service (NULL pointer dereference and client crash)\n by triggering a NULL certificate value (CVE-2014-3470). \n \n The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other\n products, uses nondeterministic CBC padding, which makes it easier\n for man-in-the-middle attackers to obtain cleartext data via a\n padding-oracle attack, aka the POODLE issue (CVE-2014-3566). \n \n The ssl23_get_client_hello function in s23_srvr.c in OpenSSL\n 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to\n use unsupported protocols, which allows remote attackers to cause a\n denial of service (NULL pointer dereference and daemon crash) via\n an unexpected handshake, as demonstrated by an SSLv3 handshake to\n a no-ssl3 application with certain error handling. NOTE: this issue\n became relevant after the CVE-2014-3568 fix (CVE-2014-3569). \n \n The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before\n 1.0.0p, and 1.0.1 before 1.0.1k does not properly calculate the square\n of a BIGNUM value, which might make it easier for remote attackers to\n defeat cryptographic protection mechanisms via unspecified vectors,\n related to crypto/bn/asm/mips.pl, crypto/bn/asm/x86_64-gcc.c, and\n crypto/bn/bn_asm.c (CVE-2014-3570). \n \n The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before\n 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote\n SSL servers to conduct ECDHE-to-ECDH downgrade attacks and trigger\n a loss of forward secrecy by omitting the ServerKeyExchange message\n (CVE-2014-3572). \n \n OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k\n does not enforce certain constraints on certificate data, which allows\n remote attackers to defeat a fingerprint-based certificate-blacklist\n protection mechanism by including crafted data within a\n certificate\u0026#039;s unsigned portion, related to crypto/asn1/a_verify.c,\n crypto/dsa/dsa_asn1.c, crypto/ecdsa/ecs_vrf.c, and crypto/x509/x_all.c\n (CVE-2014-8275). \n \n The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before\n 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL\n servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate\n brute-force decryption by offering a weak ephemeral RSA key in a\n noncompliant role, related to the FREAK issue. NOTE: the scope of\n this CVE is only client code based on OpenSSL, not EXPORT_RSA issues\n associated with servers or other TLS implementations (CVE-2015-0204). \n \n Use-after-free vulnerability in the d2i_ECPrivateKey function in\n crypto/ec/ec_asn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r,\n 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote\n attackers to cause a denial of service (memory corruption and\n application crash) or possibly have unspecified other impact via a\n malformed Elliptic Curve (EC) private-key file that is improperly\n handled during import (CVE-2015-0209). \n \n The ASN1_item_ex_d2i function in crypto/asn1/tasn_dec.c in OpenSSL\n before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2\n before 1.0.2a does not reinitialize CHOICE and ADB data structures,\n which might allow attackers to cause a denial of service (invalid\n write operation and memory corruption) by leveraging an application\n that relies on ASN.1 structure reuse (CVE-2015-0287). \n \n The PKCS#7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before\n 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not\n properly handle a lack of outer ContentInfo, which allows attackers to\n cause a denial of service (NULL pointer dereference and application\n crash) by leveraging an application that processes arbitrary PKCS#7\n data and providing malformed data with ASN.1 encoding, related to\n crypto/pkcs7/pk7_doit.c and crypto/pkcs7/pk7_lib.c (CVE-2015-0289). \n \n The updated packages have been upgraded to the 1.0.1m version where\n these security flaws has been fixed. \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5298\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0076\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0195\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0198\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0221\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3470\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3569\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3570\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3571\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3572\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8275\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0204\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0205\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0206\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0209\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0286\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0287\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0288\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0289\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0293\n http://openssl.org/news/secadv_20150108.txt\n http://openssl.org/news/secadv_20150319.txt\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Business Server 2/X86_64:\n 324a85f7e1165ab02881e44dbddaf599  mbs2/x86_64/lib64openssl1.0.0-1.0.1m-1.mbs2.x86_64.rpm\n 9c0bfb6ebd43cb6d81872abf71b4f85f  mbs2/x86_64/lib64openssl-devel-1.0.1m-1.mbs2.x86_64.rpm\n 58df54e72ca7270210c7d8dd23df402b  mbs2/x86_64/lib64openssl-engines1.0.0-1.0.1m-1.mbs2.x86_64.rpm\n b5313ffb5baaa65aea05eb05486d309a  mbs2/x86_64/lib64openssl-static-devel-1.0.1m-1.mbs2.x86_64.rpm\n a9890ce4c33630cb9e00f3b2910dd784  mbs2/x86_64/openssl-1.0.1m-1.mbs2.x86_64.rpm \n 521297a5fe26e2de0c1222d8d03382d1  mbs2/SRPMS/openssl-1.0.1m-1.mbs2.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you.  You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n  http://www.mandriva.com/en/support/security/advisories/\n\n If you want to report vulnerabilities, please contact\n\n  security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID     Date       User ID\n pub  1024D/22458A98 2000-07-10 Mandriva Security Team\n  \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.12 (GNU/Linux)\n\niD8DBQFVFTm1mqjQ0CJFipgRAoYFAKCaubn00colzVNnUBFjSElyDptGMQCfaGoS\nkz0ex6eI6hA6qSwklA2NoXY=\n=GYjX\n-----END PGP SIGNATURE-----\n. \n\nRelease Date: 2015-08-24\nLast Updated: 2015-08-24\n\nPotential Security Impact: Remote unauthorized modification, unauthorized\naccess, or unauthorized disclosure of information. \n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP Matrix\nOperating Environment. The vulnerabilities could be exploited remotely\nresulting in unauthorized modification, unauthorized access, or unauthorized\ndisclosure of information. \n\nReferences:\n\nCVE-2010-5107\nCVE-2013-0248\nCVE-2014-0118\nCVE-2014-0226\nCVE-2014-0231\nCVE-2014-1692\nCVE-2014-3523\nCVE-2014-3569\nCVE-2014-3570\nCVE-2014-3571\nCVE-2014-3572\nCVE-2014-8142\nCVE-2014-8275\nCVE-2014-9427\nCVE-2014-9652\nCVE-2014-9653\nCVE-2014-9705\nCVE-2015-0204\nCVE-2015-0205\nCVE-2015-0206\nCVE-2015-0207\nCVE-2015-0208\nCVE-2015-0209\nCVE-2015-0231\nCVE-2015-0232\nCVE-2015-0273\nCVE-2015-0285\nCVE-2015-0286\nCVE-2015-0287\nCVE-2015-0288\nCVE-2015-0289\nCVE-2015-0290\nCVE-2015-0291\nCVE-2015-0292\nCVE-2015-0293\nCVE-2015-1787\nCVE-2015-1788\nCVE-2015-1789\nCVE-2015-1790\nCVE-2015-1791\nCVE-2015-1792\nCVE-2015-2134\nCVE-2015-2139\nCVE-2015-2140\nCVE-2015-2301\nCVE-2015-2331\nCVE-2015-2348\nCVE-2015-2787\nCVE-2015-3113\nCVE-2015-5122\nCVE-2015-5123\nCVE-2015-5402\nCVE-2015-5403\nCVE-2015-5404\nCVE-2015-5405\nCVE-2015-5427\nCVE-2015-5428\nCVE-2015-5429\nCVE-2015-5430\nCVE-2015-5431\nCVE-2015-5432\nCVE-2015-5433\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Matrix Operating Environment impacted software components and versions:\n\nHP Systems Insight Manager (SIM) prior to version 7.5.0\nHP System Management Homepage (SMH) prior to version 7.5.0\nHP Version Control Agent (VCA) prior to version 7.5.0\nHP Version Control Repository Manager (VCRM) prior to version 7.5.0\nHP Insight Orchestration prior to version 7.5.0\nHP Virtual Connect Enterprise Manager (VCEM) prior to version 7.5.0\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2010-5107    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2013-0248    (AV:L/AC:M/Au:N/C:N/I:P/A:P)        3.3\nCVE-2014-0118    (AV:N/AC:M/Au:N/C:N/I:N/A:P)        4.3\nCVE-2014-0226    (AV:N/AC:M/Au:N/C:P/I:P/A:P)        6.8\nCVE-2014-0231    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2014-1692    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2014-3523    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2014-3569    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2014-3570    (AV:N/AC:L/Au:N/C:P/I:N/A:N)        5.0\nCVE-2014-3571    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2014-3572    (AV:N/AC:L/Au:N/C:N/I:P/A:N)        5.0\nCVE-2014-8142    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2014-8275    (AV:N/AC:L/Au:N/C:N/I:P/A:N)        5.0\nCVE-2014-9427    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2014-9652    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2014-9653    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2014-9705    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-0204    (AV:N/AC:M/Au:N/C:N/I:P/A:N)        4.3\nCVE-2015-0205    (AV:N/AC:L/Au:N/C:N/I:P/A:N)        5.0\nCVE-2015-0206    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0207    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0208    (AV:N/AC:M/Au:N/C:N/I:N/A:P)        4.3\nCVE-2015-0209    (AV:N/AC:M/Au:N/C:P/I:P/A:P)        6.8\nCVE-2015-0231    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-0232    (AV:N/AC:M/Au:N/C:P/I:P/A:P)        6.8\nCVE-2015-0273    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-0285    (AV:N/AC:M/Au:N/C:P/I:N/A:N)        4.3\nCVE-2015-0286    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0287    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0288    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0289    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0290    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0291    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-0292    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-0293    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-1787    (AV:N/AC:H/Au:N/C:N/I:N/A:P)        2.6\nCVE-2015-1788    (AV:N/AC:M/Au:N/C:N/I:N/A:P)        4.3\nCVE-2015-1789    (AV:N/AC:M/Au:N/C:N/I:N/A:P)        4.3\nCVE-2015-1790    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-1791    (AV:N/AC:M/Au:N/C:P/I:P/A:P)        6.8\nCVE-2015-1792    (AV:N/AC:L/Au:N/C:N/I:N/A:P)        5.0\nCVE-2015-2134    (AV:N/AC:M/Au:S/C:P/I:P/A:P)        6.0\nCVE-2015-2139    (AV:N/AC:M/Au:S/C:P/I:N/A:N)        3.5\nCVE-2015-2140    (AV:N/AC:M/Au:S/C:P/I:P/A:N)        4.9\nCVE-2015-2301    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-2331    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-2348    (AV:N/AC:L/Au:N/C:N/I:P/A:N)        5.0\nCVE-2015-2787    (AV:N/AC:L/Au:N/C:P/I:P/A:P)        7.5\nCVE-2015-3113    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2015-5122    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2015-5123    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2015-5402    (AV:L/AC:M/Au:N/C:C/I:C/A:C)        6.9\nCVE-2015-5403    (AV:N/AC:M/Au:S/C:P/I:N/A:N)        3.5\nCVE-2015-5404    (AV:N/AC:L/Au:N/C:P/I:P/A:N)        6.4\nCVE-2015-5405    (AV:N/AC:M/Au:S/C:P/I:P/A:P)        6.0\nCVE-2015-5427    (AV:N/AC:L/Au:N/C:P/I:P/A:N)        6.4\nCVE-2015-5428    (AV:N/AC:L/Au:N/C:P/I:P/A:N)        6.4\nCVE-2015-5429    (AV:N/AC:L/Au:N/C:P/I:P/A:N)        6.4\nCVE-2015-5430    (AV:N/AC:L/Au:N/C:P/I:N/A:N)        5.0\nCVE-2015-5431    (AV:N/AC:M/Au:S/C:P/I:P/A:N)        4.9\nCVE-2015-5432    (AV:N/AC:L/Au:N/C:P/I:P/A:N)        6.4\nCVE-2015-5433    (AV:N/AC:M/Au:S/C:P/I:N/A:N)        3.5\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has made the following software updates available to resolve the\nvulnerabilities in the impacted versions of HP Matrix Operating Environment\n\nHP Matrix Operating Environment 7.5.0 is only available on DVD. Please order\nthe latest version of the HP Matrix Operating Environment 7.5.0 DVD #2 ISO\nfrom the following location:\n\nhttp://www.hp.com/go/insightupdates\n\nChoose the orange Select button. This presents the HP Insight Management\nMedia order page. Choose Insight Management 7.5 DVD-2-ZIP August 2015 from\nthe Software specification list. Fill out the rest of the form and submit it. \n\nHP has addressed these vulnerabilities for the affected software components\nbundled with the HP Matrix Operating Environment in the following HP Security\nBulletins. \n\nHP Matrix Operating Environment component\n HP Security Bulletin Number\n Security Bulletin Location\n\nHP Systems Insight Manager (SIM)\n HPSBMU03394\n HPSBMU03394\nhttps://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04762744\n\nHP System Management Homepage (SMH)\n HPSBMU03380\n http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04746490\u0026la\nng=en-us\u0026cc=\n\nHP Version Control Agent (VCA)\n HPSBMU03397\n https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04765169\n\nHP Version Control Repository Manager (VCRM)\n HPSBMU03396\n https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr\n_na-c04765115\n\nHP Virtual Connect Enterprise Manager (VCEM) SDK\n HPSBMU03413\n https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr\n_na-c04774021\n\nHISTORY\nVersion:1 (rev.1) - 24 August 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: openssl security update\nAdvisory ID:       RHSA-2015:0066-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2015-0066.html\nIssue date:        2015-01-20\nUpdated on:        2015-01-21\nCVE Names:         CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 \n                   CVE-2014-8275 CVE-2015-0204 CVE-2015-0205 \n                   CVE-2015-0206 \n=====================================================================\n\n1. Summary:\n\nUpdated openssl packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 6 and 7. \n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server (v. 7) - ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. Description:\n\nOpenSSL is a toolkit that implements the Secure Sockets Layer (SSL),\nTransport Layer Security (TLS), and Datagram Transport Layer Security\n(DTLS) protocols, as well as a full-strength, general purpose cryptography\nlibrary. \n\nA NULL pointer dereference flaw was found in the DTLS implementation of\nOpenSSL. A remote attacker could send a specially crafted DTLS message,\nwhich would cause an OpenSSL server to crash. (CVE-2014-3571)\n\nA memory leak flaw was found in the way the dtls1_buffer_record() function\nof OpenSSL parsed certain DTLS messages. A remote attacker could send\nmultiple specially crafted DTLS messages to exhaust all available memory of\na DTLS server. (CVE-2015-0206)\n\nIt was found that OpenSSL\u0027s BigNumber Squaring implementation could produce\nincorrect results under certain special conditions. This flaw could\npossibly affect certain OpenSSL library functionality, such as RSA\nblinding. Note that this issue occurred rarely and with a low probability,\nand there is currently no known way of exploiting it. (CVE-2014-3570)\n\nIt was discovered that OpenSSL would perform an ECDH key exchange with a\nnon-ephemeral key even when the ephemeral ECDH cipher suite was selected. \nA malicious server could make a TLS/SSL client using OpenSSL use a weaker\nkey exchange method than the one requested by the user. (CVE-2014-3572)\n\nIt was discovered that OpenSSL would accept ephemeral RSA keys when using\nnon-export RSA cipher suites. A malicious server could make a TLS/SSL\nclient using OpenSSL use a weaker key exchange method. (CVE-2015-0204)\n\nMultiple flaws were found in the way OpenSSL parsed X.509 certificates. \nAn attacker could use these flaws to modify an X.509 certificate to produce\na certificate with a different fingerprint without invalidating its\nsignature, and possibly bypass fingerprint-based blacklisting in\napplications. (CVE-2014-8275)\n\nIt was found that an OpenSSL server would, under certain conditions, accept\nDiffie-Hellman client certificates without the use of a private key. \nAn attacker could use a user\u0027s client certificate to authenticate as that\nuser, without needing the private key. (CVE-2015-0205)\n\nAll OpenSSL users are advised to upgrade to these updated packages, which\ncontain a backported patch to mitigate the above issues. For the update to\ntake effect, all services linked to the OpenSSL library (such as httpd and\nother SSL-enabled services) must be restarted or the system rebooted. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1180184 - CVE-2015-0204 openssl: Only allow ephemeral RSA keys in export ciphersuites\n1180185 - CVE-2014-3572 openssl: ECDH downgrade bug fix\n1180187 - CVE-2014-8275 openssl: Fix various certificate fingerprint issues\n1180234 - CVE-2014-3571 openssl: DTLS segmentation fault in dtls1_get_record\n1180235 - CVE-2015-0206 openssl: DTLS memory leak in dtls1_buffer_record\n1180239 - CVE-2015-0205 openssl: DH client certificates accepted without verification\n1180240 - CVE-2014-3570 openssl: Bignum squaring may produce incorrect results\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.5.src.rpm\n\ni386:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\ni386:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-static-1.0.1e-30.el6_6.5.i686.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.5.src.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.5.src.rpm\n\ni386:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\n\nppc64:\nopenssl-1.0.1e-30.el6_6.5.ppc.rpm\nopenssl-1.0.1e-30.el6_6.5.ppc64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.ppc.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.ppc64.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.ppc.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.ppc64.rpm\n\ns390x:\nopenssl-1.0.1e-30.el6_6.5.s390.rpm\nopenssl-1.0.1e-30.el6_6.5.s390x.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.s390.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.s390x.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.s390.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.s390x.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-static-1.0.1e-30.el6_6.5.i686.rpm\n\nppc64:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.ppc64.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.ppc64.rpm\nopenssl-static-1.0.1e-30.el6_6.5.ppc64.rpm\n\ns390x:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.s390x.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.s390x.rpm\nopenssl-static-1.0.1e-30.el6_6.5.s390x.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.5.src.rpm\n\ni386:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.i686.rpm\nopenssl-static-1.0.1e-30.el6_6.5.i686.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.5.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.5.x86_64.rpm\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nopenssl-1.0.1e-34.el7_0.7.src.rpm\n\nx86_64:\nopenssl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-static-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-static-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nopenssl-1.0.1e-34.el7_0.7.src.rpm\n\nx86_64:\nopenssl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-static-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-static-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nopenssl-1.0.1e-34.el7_0.7.src.rpm\n\nppc64:\nopenssl-1.0.1e-34.el7_0.7.ppc64.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.ppc.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.ppc64.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.ppc.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.ppc64.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.ppc.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.ppc64.rpm\n\ns390x:\nopenssl-1.0.1e-34.el7_0.7.s390x.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.s390.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.s390x.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.s390.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.s390x.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.s390.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.s390x.rpm\n\nx86_64:\nopenssl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nopenssl-debuginfo-1.0.1e-34.el7_0.7.ppc.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.ppc64.rpm\nopenssl-perl-1.0.1e-34.el7_0.7.ppc64.rpm\nopenssl-static-1.0.1e-34.el7_0.7.ppc.rpm\nopenssl-static-1.0.1e-34.el7_0.7.ppc64.rpm\n\ns390x:\nopenssl-debuginfo-1.0.1e-34.el7_0.7.s390.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.s390x.rpm\nopenssl-perl-1.0.1e-34.el7_0.7.s390x.rpm\nopenssl-static-1.0.1e-34.el7_0.7.s390.rpm\nopenssl-static-1.0.1e-34.el7_0.7.s390x.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-static-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-static-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nopenssl-1.0.1e-34.el7_0.7.src.rpm\n\nx86_64:\nopenssl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-devel-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-libs-1.0.1e-34.el7_0.7.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-debuginfo-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-perl-1.0.1e-34.el7_0.7.x86_64.rpm\nopenssl-static-1.0.1e-34.el7_0.7.i686.rpm\nopenssl-static-1.0.1e-34.el7_0.7.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2014-3570\nhttps://access.redhat.com/security/cve/CVE-2014-3571\nhttps://access.redhat.com/security/cve/CVE-2014-3572\nhttps://access.redhat.com/security/cve/CVE-2014-8275\nhttps://access.redhat.com/security/cve/CVE-2015-0204\nhttps://access.redhat.com/security/cve/CVE-2015-0205\nhttps://access.redhat.com/security/cve/CVE-2015-0206\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://www.openssl.org/news/secadv_20150108.txt\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFUwCWMXlSAg2UNWIIRAioBAJ4/RjG4OGXzCwg+PJJWNqyvahe3rQCeNE+X\nENFobdxQdJ+gVAiRe8Qf54A=\n=wyAg\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-0205"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          },
          {
            "db": "BID",
            "id": "71941"
          },
          {
            "db": "VULMON",
            "id": "CVE-2015-0205"
          },
          {
            "db": "PACKETSTORM",
            "id": "133317"
          },
          {
            "db": "PACKETSTORM",
            "id": "129973"
          },
          {
            "db": "PACKETSTORM",
            "id": "131044"
          },
          {
            "db": "PACKETSTORM",
            "id": "133316"
          },
          {
            "db": "PACKETSTORM",
            "id": "129870"
          },
          {
            "db": "PACKETSTORM",
            "id": "133325"
          },
          {
            "db": "PACKETSTORM",
            "id": "130051"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-0205",
            "trust": 2.9
          },
          {
            "db": "JUNIPER",
            "id": "JSA10679",
            "trust": 1.4
          },
          {
            "db": "BID",
            "id": "71941",
            "trust": 1.4
          },
          {
            "db": "MCAFEE",
            "id": "SB10102",
            "trust": 1.1
          },
          {
            "db": "MCAFEE",
            "id": "SB10108",
            "trust": 1.1
          },
          {
            "db": "BID",
            "id": "91787",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1033378",
            "trust": 1.1
          },
          {
            "db": "JVN",
            "id": "JVNVU98974537",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010",
            "trust": 0.8
          },
          {
            "db": "VULMON",
            "id": "CVE-2015-0205",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133317",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129973",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131044",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133316",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129870",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133325",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130051",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-0205"
          },
          {
            "db": "BID",
            "id": "71941"
          },
          {
            "db": "PACKETSTORM",
            "id": "133317"
          },
          {
            "db": "PACKETSTORM",
            "id": "129973"
          },
          {
            "db": "PACKETSTORM",
            "id": "131044"
          },
          {
            "db": "PACKETSTORM",
            "id": "133316"
          },
          {
            "db": "PACKETSTORM",
            "id": "129870"
          },
          {
            "db": "PACKETSTORM",
            "id": "133325"
          },
          {
            "db": "PACKETSTORM",
            "id": "130051"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-0205"
          }
        ]
      },
      "id": "VAR-201501-0339",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.4209152
      },
      "last_update_date": "2026-04-10T23:30:42.866000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "cisco-sa-20150310-ssl",
            "trust": 0.8,
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl"
          },
          {
            "title": "Unauthenticated DH client certificate fix.",
            "trust": 0.8,
            "url": "https://github.com/openssl/openssl/commit/1421e0c584ae9120ca1b88098f13d6d2e90b83a3"
          },
          {
            "title": "HPSBMU03396",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050205101530\u0026w=2"
          },
          {
            "title": "HPSBMU03397",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050297101809\u0026w=2"
          },
          {
            "title": "HPSBMU03409",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050155601375\u0026w=2"
          },
          {
            "title": "HPSBMU03413",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050254401665\u0026w=2"
          },
          {
            "title": "HPSBMU03380",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026m=143748090628601\u0026w=2"
          },
          {
            "title": "HPSBHF03289",
            "trust": 0.8,
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c04602055"
          },
          {
            "title": "HPSBMU03611",
            "trust": 0.8,
            "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05150888"
          },
          {
            "title": "HPSBMU03612",
            "trust": 0.8,
            "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05158380"
          },
          {
            "title": "NV15-017",
            "trust": 0.8,
            "url": "http://jpn.nec.com/security-info/secinfo/nv15-017.html"
          },
          {
            "title": "DH client certificates accepted without verification [Server] (CVE-2015-0205)",
            "trust": 0.8,
            "url": "https://www.openssl.org/news/secadv_20150108.txt"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - April 2015",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - October 2015",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - April 2015 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015verbose-2365613.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - October 2015 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015verbose-2367954.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - July 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - July 2015",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - July 2016 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2016verbose-2881721.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - July 2015 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015verbose-2367947.html"
          },
          {
            "title": "Oracle Third Party Bulletin - January 2015",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"
          },
          {
            "title": "RHSA-2015:0066",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/RHSA-2015-0066.html"
          },
          {
            "title": "April 2015 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/april_2015_critical_patch_update"
          },
          {
            "title": "October 2015 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/october_2015_critical_patch_update"
          },
          {
            "title": "July 2016 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/july_2016_critical_patch_update"
          },
          {
            "title": "July 2015 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/july_2015_critical_patch_update"
          },
          {
            "title": "cisco-sa-20150310-ssl",
            "trust": 0.8,
            "url": "http://www.cisco.com/cisco/web/support/JP/112/1128/1128755_cisco-sa-20150310-ssl-j.html"
          },
          {
            "title": "\u682a\u5f0f\u4f1a\u793e\u30d0\u30c3\u30d5\u30a1\u30ed\u30fc \u306e\u544a\u77e5\u30da\u30fc\u30b8",
            "trust": 0.8,
            "url": "http://buffalo.jp/support_s/s20150327b.html"
          },
          {
            "title": "Red Hat: Moderate: openssl security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150066 - Security Advisory"
          },
          {
            "title": "Red Hat: CVE-2015-0205",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2015-0205"
          },
          {
            "title": "Ubuntu Security Notice: openssl vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2459-1"
          },
          {
            "title": "Debian Security Advisories: DSA-3125-1 openssl -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=a3210fee56d96657bbff4ad44c3d0807"
          },
          {
            "title": "Tenable Security Advisories: [R7] OpenSSL \u002720150108\u0027 Advisory Affects Tenable Products",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2015-03"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2015-469",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2015-469"
          },
          {
            "title": "Symantec Security Advisories: SA88 : OpenSSL Security Advisory 08-Jan-2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=9281dc3b1a760e1cf2711cdf82cf64d7"
          },
          {
            "title": "Cisco: Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-20150310-ssl"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - April 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=4b527561ba1a5de7a529c8a93679f585"
          },
          {
            "title": "Oracle Solaris Third Party Bulletins: Oracle Solaris Third Party Bulletin - January 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_solaris_third_party_bulletins\u0026qid=eaf98750f1130c39e83765575c69e165"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - October 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=523d3f220a64ff01dd95e064bd37566a"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - October 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=744c19dc9f4f70ad58059bf8733ec9c1"
          },
          {
            "title": "Citrix Security Bulletins: Multiple Security Vulnerabilities in Citrix NetScaler Platform IPMI Lights Out Management (LOM) firmware",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=eb059834b7f24e2562bcf592b6d0afbc"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - July 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=459961024c4bdce7bb3a1a40a65a6f2e"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=3a04485ebb79f7fbc2472bf9af5ce489"
          },
          {
            "title": "JPN_RIC13351-2",
            "trust": 0.1,
            "url": "https://github.com/neominds/JPN_RIC13351-2 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-0205"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-310",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-0205"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.6,
            "url": "https://www.openssl.org/news/secadv_20150108.txt"
          },
          {
            "trust": 1.4,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150310-ssl"
          },
          {
            "trust": 1.4,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html"
          },
          {
            "trust": 1.4,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
          },
          {
            "trust": 1.4,
            "url": "https://support.citrix.com/article/ctx216642"
          },
          {
            "trust": 1.2,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0066.html"
          },
          {
            "trust": 1.1,
            "url": "https://github.com/openssl/openssl/commit/1421e0c584ae9120ca1b88098f13d6d2e90b83a3"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-january/147938.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-january/148363.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:019"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2015/dsa-3125"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00021.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142721102728110\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:062"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/91787"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05150888"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05158380"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050297101809\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050254401665\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=143748090628601\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050155601375\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050205101530\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"
          },
          {
            "trust": 1.1,
            "url": "https://bto.bluecoat.com/security-advisory/sa88"
          },
          {
            "trust": 1.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10679"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1033378"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html"
          },
          {
            "trust": 1.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10108"
          },
          {
            "trust": 1.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10102"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/71941"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/99708"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
          },
          {
            "trust": 1.0,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0205"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu98974537"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0205"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3572"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0204"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0205"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3570"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3571"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8275"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0206"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3569"
          },
          {
            "trust": 0.4,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04765169"
          },
          {
            "trust": 0.3,
            "url": "http://www.pexip.com/sites/pexip/files/pexip_security_bulletin_2015-01-30.pdf"
          },
          {
            "trust": 0.3,
            "url": "http://openssl.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21699883"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21699667"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10679\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04746490"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04602055"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04765115"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04774019"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04774021"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05150888"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05158380"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21883857"
          },
          {
            "trust": 0.3,
            "url": "https://aix.software.ibm.com/aix/efixes/security/openssl_advisory12.asc"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/101008182"
          },
          {
            "trust": 0.3,
            "url": "https://www.openssl.org/news/vulnerabilities.html"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963783"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098593"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21903299"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022575"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005159"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21700275"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005170"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097503"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097811"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21697291"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097796"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21697162"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005150"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1009328"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21695985"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022074"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098358"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21694849"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097360"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21699052"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21698506"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21699069"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0209"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.3,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0286"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2015-0205"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0288"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8275"
          },
          {
            "trust": 0.2,
            "url": "http://www.mandriva.com/en/support/security/"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0204"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3570"
          },
          {
            "trust": 0.2,
            "url": "http://www.mandriva.com/en/support/security/advisories/"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3571"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0206"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3572"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3569"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/310.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2015:0066"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2459-1/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5432"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5433"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3572\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0205\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:01/openssl-9.3.patch"
          },
          {
            "trust": 0.1,
            "url": "https://svnweb.freebsd.org/base?view=revision\u0026revision=nnnnnn\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0206\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3571\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://www.openssl.org/news/secadv_20150108.txt\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8275\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:01/openssl-10.0.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:01/openssl-10.1.patch"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3569\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3570\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/advisories/freebsd-sa-15:01.openssl.asc\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://www.freebsd.org/handbook/makeworld.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:01/openssl-10.0.patch"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0204\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:01/openssl-9.3.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:01/openssl-10.1.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0289"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0287"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0195"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0160"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3566"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-5298"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0287"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0160"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0076"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3513"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0224"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0198"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3567"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0289"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3470"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3513"
          },
          {
            "trust": 0.1,
            "url": "http://openssl.org/news/secadv_20150319.txt"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0198"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-5298"
          },
          {
            "trust": 0.1,
            "url": "http://openssl.org/news/secadv_20150108.txt"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0221"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0076"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0288"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0293"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3567"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0224"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0221"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3470"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0195"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0293"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3566"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5409"
          },
          {
            "trust": 0.1,
            "url": "http://h20566.www2.hpe.com/hpsc/doc/public/display?calledby=search_result\u0026doc"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5412"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5413"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-20861d704bc04221a1518b7cb6"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5410"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5411"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0207"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0118"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8142"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0226"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0231"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0285"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9653"
          },
          {
            "trust": 0.1,
            "url": "http://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04746490\u0026la"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9705"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0232"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-1692"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/go/insightupdates"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-0248"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9427"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0208"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0273"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-5107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0231"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9652"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04762744"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0204"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0206"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-8275"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3572"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3571"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3570"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-0205"
          },
          {
            "db": "BID",
            "id": "71941"
          },
          {
            "db": "PACKETSTORM",
            "id": "133317"
          },
          {
            "db": "PACKETSTORM",
            "id": "129973"
          },
          {
            "db": "PACKETSTORM",
            "id": "131044"
          },
          {
            "db": "PACKETSTORM",
            "id": "133316"
          },
          {
            "db": "PACKETSTORM",
            "id": "129870"
          },
          {
            "db": "PACKETSTORM",
            "id": "133325"
          },
          {
            "db": "PACKETSTORM",
            "id": "130051"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-0205"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2015-0205",
            "ident": null
          },
          {
            "db": "BID",
            "id": "71941",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "133317",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129973",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131044",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "133316",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129870",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "133325",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130051",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2015-0205",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-01-09T00:00:00",
            "db": "VULMON",
            "id": "CVE-2015-0205",
            "ident": null
          },
          {
            "date": "2015-01-08T00:00:00",
            "db": "BID",
            "id": "71941",
            "ident": null
          },
          {
            "date": "2015-08-26T01:33:18",
            "db": "PACKETSTORM",
            "id": "133317",
            "ident": null
          },
          {
            "date": "2015-01-15T16:53:07",
            "db": "PACKETSTORM",
            "id": "129973",
            "ident": null
          },
          {
            "date": "2015-03-27T20:42:44",
            "db": "PACKETSTORM",
            "id": "131044",
            "ident": null
          },
          {
            "date": "2015-08-26T01:33:07",
            "db": "PACKETSTORM",
            "id": "133316",
            "ident": null
          },
          {
            "date": "2015-01-09T17:43:35",
            "db": "PACKETSTORM",
            "id": "129870",
            "ident": null
          },
          {
            "date": "2015-08-26T01:35:08",
            "db": "PACKETSTORM",
            "id": "133325",
            "ident": null
          },
          {
            "date": "2015-01-22T01:35:41",
            "db": "PACKETSTORM",
            "id": "130051",
            "ident": null
          },
          {
            "date": "2015-01-13T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-001010",
            "ident": null
          },
          {
            "date": "2015-01-09T02:59:11.273000",
            "db": "NVD",
            "id": "CVE-2015-0205",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2017-11-15T00:00:00",
            "db": "VULMON",
            "id": "CVE-2015-0205",
            "ident": null
          },
          {
            "date": "2017-01-23T00:09:00",
            "db": "BID",
            "id": "71941",
            "ident": null
          },
          {
            "date": "2016-09-30T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-001010",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-0205",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "71941"
          }
        ],
        "trust": 0.3
      },
      "title": {
        "_id": null,
        "data": "OpenSSL of  s3_srvr.c of  ssl3_get_cert_verify Vulnerability to gain access to functions",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-001010"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "71941"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201409-1155

    Vulnerability from variot - Updated: 2026-04-10 23:30

    GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271. QNAP Systems, Inc. Provided by QTS teeth, Turbo NAS for OS is. QTS for, GNU Bash Vulnerability (JVNVU#97219505) caused by OS Command injection vulnerability (CWE-78) Exists. This vulnerability information is based on the Information Security Early Warning Partnership. IPA Report to JPCERT/CC Coordinated with the developer. Reporter : University of Electro-Communications Wakisaka Yuki MrAny application permission OS The command may be executed. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. GNU Bash 3.2 and later are vulnerable; prior versions may also be affected.

    This vulnerability allows users that have been granted access to a shell script to escalate privilege and execute unrestricted commands at the same security level as the Bash script. Customers who need to upgrade the firmware of their Superdome X or HP Converged System 900 for SAP HANA should contact HP Technical Support to obtain the firmware or plan to schedule an onsite visit with an HP Services field service professional.

    NOTE: HP strongly recommends implementing the following security best practices to help reduce both known and future security vulnerability risks:

    Isolate the HP Superdome X or HP Converged System 900 for SAP HANA's management network by keeping it separate from the data or production network, and not connecting it directly to the Internet without additional access authentication. Patch and maintain Lightweight Directory Access Protocol (LDAP) and web servers. Use virus scanners, intrusion detection/prevention systems (IDS/IPS), and vulnerability scanners regularly.

    Additionally two out-of-bounds array accesses in the bash parser are fixed which were revealed in Red Hat's internal analysis for these issues and also independently reported by Todd Sabin.

    For the stable distribution (wheezy), these problems have been fixed in version 4.2+dfsg-0.1+deb7u3. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04558068

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c04558068 Version: 1

    HPSBMU03246 rev.1 - HP Insight Control for Linux Central Management Server Pre-boot Execution Environment running Bash Shell, Multiple Vulnerabilities

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2015-02-02 Last Updated: 2015-02-02

    Potential Security Impact: Multiple vulnerabilities

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Insight Control for Linux Central Management Server Pre-boot Execution Environment that could be exploited remotely resulting in Denial of Service (DoS), disclosure of information, and other vulnerabilities.

    References:

    CVE-2014-6271 CVE-2014-6277 CVE-2014-6278 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2014-7196 SSRT101742

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Insight Control for Linux Central Management Server Pre-boot Execution Environment running Bash Shell

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2014-6271 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2014-6277 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2014-6278 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2014-7169 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2014-7186 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2014-7187 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2014-7196 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has provided the following instructions to resolve these vulnerabilities.

    Follow these steps to update the HP Insight Control for Linux Central Management Server Pre-boot Execution Environment:

    NOTE: The following procedure updates the bash shell on the Linux Pre-boot Execution Environment. Please update the Bash shell version on the HP Insight Control for Linux Central Management Server also. On the Production RHEL 6.2 OS:

    a. Prepare temporary directory for Bash update software:

    mkdir -p $HOME/tmp/bash

    cd $HOME/tmp/bash

    pwd

    /tmp/bash

    b.

    c. Extract the Bash update software package.

    rpm2cpio bash-4.1.2-15.el6_4.2.i686.rpm| cpio -idmv

    d. Verify the version of the Bash update software:

    ./bin/bash --version

    GNU bash, version 4.1.2(1)-release (i686-redhat-linux-gnu)

    e. Verify version dependencies:

    ldd ./bin/bash

    linux-gate.so.1 => (0x008a7000) libtinfo.so.5 => /lib/libtinfo.so.5 (0x00459000) libdl.so.2 => /lib/libdl.so.2 (0x002c0000) libc.so.6 => /lib/libc.so.6 (0x0012e000) /lib/ld-linux.so.2 (0x00108000)

    f. Create archive file from '/lib' to copy and install on the Insight Control for Linux Central Management Server Pre-boot Execution Environment system:

    mkdir $HOME/tmp/lib

    cd /lib

    cp * $HOME/tmp/lib

    cd $HOME/tmp

    pwd

    /tmp

    tar cvf bash_lib.tar *

    1. Download the new archive file '$HOME/tmp/bash_lib.tar' from the Production RHEL 6.2 OS system to the Insight Control for Linux Central Management Server Pre-boot Execution Environment system. On the HP Insight Control for Linux Central Managment Server Pre-boot Execution Environment system:

    a. Create a temporary folder for the toolkit and copy the toolkit there :

    mkdir -p $HOME/tmp/temp-toolkit

    cp /usr/share/systemimager/boot/i386/standard/toolkit.tar.gz

    $HOME/tmp/temp-toolkit

    b. Extract the file 'toolkit.tar.gz' into the temporary folder:

    cd $HOME/tmp/temp-toolkit

    tar zxvf toolkit.tar.gz

    mv $HOME/tmp/temp-toolkit/toolkit.tar.gz /tmp

    c. Verify the version of the toolkit Bash:

    $HOME/tmp/temp-toolkit/bin/bash --version

    GNU bash, version 3.2.0(1)-release (i386-pc-linux-gnu) Copyright (C) 2005 Free Software Foundation, Inc.

    d. Verify dependencies versions:

    ldd $HOME/tmp/temp-toolkit/bin/bash

    linux-gate.so.1 => (0xffffe000) libtermcap.so.2 => /lib/libtermcap.so.2 (0xf7f8c000) libdl.so.2 => /lib/libdl.so.2 (0x008bf000) libc.so.6 => /lib/libc.so.6 (0x00777000) /lib/ld-linux.so.2 (0x00755000)

    e. Extract the archive 'bash_lib.tar' to directory '$HOME/tmp/bash_lib' . Then copy the bash binary and the library files to their respective locations:

    tar xvf $HOME/tmp/bash_lib

    cp $HOME/tmp/bash_lib/bash/bash $HOME/tmp/temp-toolkit/bin

    cp $HOME/tmp/bash_lib/lib/* $HOME/tmp/temp-toolkit/lib

    f. Create the updated toolkit gzipped archive file and place in /usr/share/systemimager/boot/i386/standard

    tar czvf toolkit.tar.gz *

    cp toolkit.tar.gz /usr/share/systemimager/boot/i386/standard

    HISTORY Version:1 (rev.1) - 2 February 2015 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

    HP Product Firmware Version

    HP StoreEver ESL G3 Tape Libraries with MCB version 2 680H_GS40701

    HP StoreEver ESL G3 Tape Libraries with MCB version 1 656H_GS10801

    The firmware is customer installable and is available in the Drivers, Software & Firmware section at the following location:

    http://www.hp.com/support/eslg3
    

    Notes:

    - Updating the library firmware requires a reboot of the library.
    

    Mitigation Instructions

    HP recommends the following mitigation steps to reduce the risk of this vulnerability for HP StoreEver ESL G3 Tape Library. The shell is not accessible via the standard calibration or remote management interfaces. ============================================================================ Ubuntu Security Notice USN-2363-2 September 26, 2014

    bash vulnerability

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 14.04 LTS

    Summary:

    Bash allowed bypassing environment restrictions in certain environments. Due to a build issue, the patch for CVE-2014-7169 didn't get properly applied in the Ubuntu 14.04 LTS package. This update fixes the problem.

    We apologize for the inconvenience. (CVE-2014-7169)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 14.04 LTS: bash 4.3-7ubuntu1.3

    In general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: bash security update Advisory ID: RHSA-2014:1311-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2014-1311.html Issue date: 2014-09-26 CVE Names: CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 =====================================================================

    1. Summary:

    Updated bash packages that fix one security issue are now available for Red Hat Enterprise Linux 4 Extended Life Cycle Support, Red Hat Enterprise Linux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Extended Update Support, Red Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat Enterprise Linux 6.4 Extended Update Support.

    Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux AS (v. 4 ELS) - i386, ia64, x86_64 Red Hat Enterprise Linux AUS (v. 6.2 server) - x86_64 Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.4) - x86_64 Red Hat Enterprise Linux ES (v. 4 ELS) - i386, x86_64 Red Hat Enterprise Linux EUS (v. 5.9 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux HPC Node EUS (v. 6.4) - x86_64 Red Hat Enterprise Linux LL (v. 5.6 server) - i386, ia64, x86_64 Red Hat Enterprise Linux Server EUS (v. 6.4) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 6.2) - x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 6.4) - i386, ppc64, s390x, x86_64

    1. Description:

    The GNU Bourne Again shell (Bash) is a shell and command language interpreter compatible with the Bourne shell (sh). Bash is the default shell for Red Hat Enterprise Linux.

    It was found that the fix for CVE-2014-6271 was incomplete, and Bash still allowed certain characters to be injected into other environments via specially crafted environment variables. An attacker could potentially use this flaw to override or bypass environment restrictions to execute shell commands. Certain services and applications allow remote unauthenticated attackers to provide environment variables, allowing them to exploit this issue. (CVE-2014-7169)

    Applications which directly create Bash functions as environment variables need to be made aware of the changes to the way names are handled by this update. For more information see the Knowledgebase article at https://access.redhat.com/articles/1200223

    Note: Docker users are advised to use "yum update" within their containers, and to commit the resulting changes.

    For additional information on CVE-2014-6271 and CVE-2014-7169, refer to the aforementioned Knowledgebase article.

    All bash users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258

    1. Package List:

    Red Hat Enterprise Linux AS (v. 4 ELS):

    Source: bash-3.0-27.el4.4.src.rpm

    i386: bash-3.0-27.el4.4.i386.rpm bash-debuginfo-3.0-27.el4.4.i386.rpm

    ia64: bash-3.0-27.el4.4.i386.rpm bash-3.0-27.el4.4.ia64.rpm bash-debuginfo-3.0-27.el4.4.i386.rpm bash-debuginfo-3.0-27.el4.4.ia64.rpm

    x86_64: bash-3.0-27.el4.4.x86_64.rpm bash-debuginfo-3.0-27.el4.4.x86_64.rpm

    Red Hat Enterprise Linux ES (v. 4 ELS):

    Source: bash-3.0-27.el4.4.src.rpm

    i386: bash-3.0-27.el4.4.i386.rpm bash-debuginfo-3.0-27.el4.4.i386.rpm

    x86_64: bash-3.0-27.el4.4.x86_64.rpm bash-debuginfo-3.0-27.el4.4.x86_64.rpm

    Red Hat Enterprise Linux LL (v. 5.6 server):

    Source: bash-3.2-24.el5_6.2.src.rpm

    i386: bash-3.2-24.el5_6.2.i386.rpm bash-debuginfo-3.2-24.el5_6.2.i386.rpm

    ia64: bash-3.2-24.el5_6.2.i386.rpm bash-3.2-24.el5_6.2.ia64.rpm bash-debuginfo-3.2-24.el5_6.2.i386.rpm bash-debuginfo-3.2-24.el5_6.2.ia64.rpm

    x86_64: bash-3.2-24.el5_6.2.x86_64.rpm bash-debuginfo-3.2-24.el5_6.2.x86_64.rpm

    Red Hat Enterprise Linux EUS (v. 5.9 server):

    Source: bash-3.2-32.el5_9.3.src.rpm

    i386: bash-3.2-32.el5_9.3.i386.rpm bash-debuginfo-3.2-32.el5_9.3.i386.rpm

    ia64: bash-3.2-32.el5_9.3.i386.rpm bash-3.2-32.el5_9.3.ia64.rpm bash-debuginfo-3.2-32.el5_9.3.i386.rpm bash-debuginfo-3.2-32.el5_9.3.ia64.rpm

    ppc: bash-3.2-32.el5_9.3.ppc.rpm bash-debuginfo-3.2-32.el5_9.3.ppc.rpm

    s390x: bash-3.2-32.el5_9.3.s390x.rpm bash-debuginfo-3.2-32.el5_9.3.s390x.rpm

    x86_64: bash-3.2-32.el5_9.3.x86_64.rpm bash-debuginfo-3.2-32.el5_9.3.x86_64.rpm

    Red Hat Enterprise Linux HPC Node EUS (v. 6.4):

    Source: bash-4.1.2-15.el6_4.2.src.rpm

    x86_64: bash-4.1.2-15.el6_4.2.x86_64.rpm bash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm

    Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.4):

    Source: bash-4.1.2-15.el6_4.2.src.rpm

    x86_64: bash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm bash-doc-4.1.2-15.el6_4.2.x86_64.rpm

    Red Hat Enterprise Linux AUS (v. 6.2 server):

    Source: bash-4.1.2-9.el6_2.2.src.rpm

    x86_64: bash-4.1.2-9.el6_2.2.x86_64.rpm bash-debuginfo-4.1.2-9.el6_2.2.x86_64.rpm

    Red Hat Enterprise Linux Server EUS (v. 6.4):

    Source: bash-4.1.2-15.el6_4.2.src.rpm

    i386: bash-4.1.2-15.el6_4.2.i686.rpm bash-debuginfo-4.1.2-15.el6_4.2.i686.rpm

    ppc64: bash-4.1.2-15.el6_4.2.ppc64.rpm bash-debuginfo-4.1.2-15.el6_4.2.ppc64.rpm

    s390x: bash-4.1.2-15.el6_4.2.s390x.rpm bash-debuginfo-4.1.2-15.el6_4.2.s390x.rpm

    x86_64: bash-4.1.2-15.el6_4.2.x86_64.rpm bash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm

    Red Hat Enterprise Linux Server Optional AUS (v. 6.2):

    Source: bash-4.1.2-9.el6_2.2.src.rpm

    x86_64: bash-debuginfo-4.1.2-9.el6_2.2.x86_64.rpm bash-doc-4.1.2-9.el6_2.2.x86_64.rpm

    Red Hat Enterprise Linux Server Optional EUS (v. 6.4):

    Source: bash-4.1.2-15.el6_4.2.src.rpm

    i386: bash-debuginfo-4.1.2-15.el6_4.2.i686.rpm bash-doc-4.1.2-15.el6_4.2.i686.rpm

    ppc64: bash-debuginfo-4.1.2-15.el6_4.2.ppc64.rpm bash-doc-4.1.2-15.el6_4.2.ppc64.rpm

    s390x: bash-debuginfo-4.1.2-15.el6_4.2.s390x.rpm bash-doc-4.1.2-15.el6_4.2.s390x.rpm

    x86_64: bash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm bash-doc-4.1.2-15.el6_4.2.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

    1. References:

    https://www.redhat.com/security/data/cve/CVE-2014-7169.html https://www.redhat.com/security/data/cve/CVE-2014-7186.html https://www.redhat.com/security/data/cve/CVE-2014-7187.html https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/articles/1200223

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFUJau9XlSAg2UNWIIRAhKkAKC931kAxA4S4exwT4uGhDr7uDFIKQCglKKS N0AJiOto/RXwBqHtbfr1wkM= =SeAK -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .

    HP Vertica AMI's and Virtual Machines prior to v7.1.1-0.

    HP has released the following updates to resolve this vulnerability for HP Vertica products.

    Update to the latest VM image available at: https://my.vertica.com

    For customers using the AMI version HP Vertica Analytics platform, please install the latest image available at Amazon. Under Step2: your ITRC operating systems - verify your operating system selections are checked and save.

    To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php Log in on the web page: Subscriber's choice for Business: sign-in. On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions.

    "HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user's use or disregard of the information provided in this Bulletin. To the extent permitted by law, HP disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose, title and non-infringement."

    Copyright 2014 Hewlett-Packard Development Company, L.P. The unit provides Calibration Software running on embedded Linux, which includes a Bash Shell. The software is used for service purposes only.

    NOTE: The vCAS product is vulnerable only if DHCP is enabled.
    

    NOTE: HP recommends to not power-down or disconnect the vCAS until the update is available.

    MITIGATION INFORMATION

    A Shellshock attack requires the definition of an environment variable introduced into Bash. The vCAS has three attack vectors: SSH, the lighttpd web server, and the DHCP client.

    • The exploit does not elevate privileges.

    The DHCP client uses Bash scripts and is vulnerable to Shellshock. The DHCP exploit can be mitigated by ensuring that DHCP is disabled on the vCAS.

    Note: HP strongly discourages the use of DHCP on the vCAS.

    The web UI forces the vCAS user to assign a static IP address and change the hp-admin password. A vCAS user must manually configure DHCP for use on the vCAS.

    A vCAS user can verify that DHCP is disabled by inspecting the file "/etc/network/interfaces" and ensuring that the "iface" line for device "eth0" is set for a static IP

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "ibm",
            "version": "7.2.6"
          },
          {
            "_id": null,
            "model": "esx",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "vcenter server appliance",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "vmware",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "redhat",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "vcenter server appliance",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "vmware",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "starter kit for cloud",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "ibm",
            "version": "2.2.0"
          },
          {
            "_id": null,
            "model": "esx",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "vmware",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "redhat",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "ibm",
            "version": "7.2.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "oracle",
            "version": "4"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "vcenter server appliance",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.8"
          },
          {
            "_id": null,
            "model": "stn6800",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "4.1.2.06"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.1.0"
          },
          {
            "_id": null,
            "model": "storwize v3700",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.7"
          },
          {
            "_id": null,
            "model": "traffix signaling delivery controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "3.3.2"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "10.10.0"
          },
          {
            "_id": null,
            "model": "open enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.2.0"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "traffix signaling delivery controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "stn6500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.8.0.07"
          },
          {
            "_id": null,
            "model": "big-ip local traffic manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.6"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.4"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.12.0"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.1"
          },
          {
            "_id": null,
            "model": "stn6800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "4.1.2.0"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.8"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.9"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.7"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "flex system v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.7"
          },
          {
            "_id": null,
            "model": "security gateway",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r77.30"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0_ppc64"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7_s390x"
          },
          {
            "_id": null,
            "model": "infosphere guardium database activity monitoring",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "gnu",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.4"
          },
          {
            "_id": null,
            "model": "storwize v3500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.7"
          },
          {
            "_id": null,
            "model": "storwize v3700",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "big-ip application acceleration manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4_ppc64"
          },
          {
            "_id": null,
            "model": "traffix signaling delivery controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "3.5.1"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.1.0.7"
          },
          {
            "_id": null,
            "model": "big-ip access policy manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "big-ip access policy manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "big-ip wan optimization manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "big-ip global traffic manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "storwize v3700",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "stn6500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "4.1.2.06"
          },
          {
            "_id": null,
            "model": "big-ip protocol security module",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.5_s390x"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.5_ppc64"
          },
          {
            "_id": null,
            "model": "big-ip global traffic manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netscaler sdx",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "citrix",
            "version": "10"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.0.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "software defined network for virtual environments",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.2.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "storwize v5000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server from rhui",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apple",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.9"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.5.0.4"
          },
          {
            "_id": null,
            "model": "big-ip wan optimization manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.8"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "big-ip local traffic manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "storwize v5000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0.11"
          },
          {
            "_id": null,
            "model": "stn6500",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "4.1.2.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0_ppc"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "3.4"
          },
          {
            "_id": null,
            "model": "stn7800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.9.1.0"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "storwize v3700",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.3"
          },
          {
            "_id": null,
            "model": "gluster storage server for on-premise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "zenworks configuration management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "security access manager for web 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.2"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "netscaler sdx",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "citrix",
            "version": "10.1.129.11r1"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.9_s390x"
          },
          {
            "_id": null,
            "model": "stn7800",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.9.1.08"
          },
          {
            "_id": null,
            "model": "big-ip access policy manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.1.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.0.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server from rhui",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "traffix signaling delivery controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "3.4.1"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "netscaler sdx",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "citrix",
            "version": "10.5"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.11.0"
          },
          {
            "_id": null,
            "model": "storwize v5000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "zenworks configuration management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "10.3"
          },
          {
            "_id": null,
            "model": "traffix signaling delivery controller",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.13.9"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "big-ip advanced firewall manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "security access manager for web 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.5"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "storwize v5000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0.11"
          },
          {
            "_id": null,
            "model": "big-ip global traffic manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4_s390x"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.9.12"
          },
          {
            "_id": null,
            "model": "flex system v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "stn7800",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.8.0.07"
          },
          {
            "_id": null,
            "model": "big-ip wan optimization manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "open enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "stn6800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.8.0.0"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.6"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.9.0"
          },
          {
            "_id": null,
            "model": "storwize v5000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7_ppc64"
          },
          {
            "_id": null,
            "model": "big-ip global traffic manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.5"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.7"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "netscaler sdx",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "citrix",
            "version": "9.3.67.5r1"
          },
          {
            "_id": null,
            "model": "big-ip application acceleration manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.4.0"
          },
          {
            "_id": null,
            "model": "netscaler sdx",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "citrix",
            "version": "10.5.52.11r1"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip protocol security module",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.4_ppc64"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip policy enforcement manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "flex system v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.2.0"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.10.9"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.13.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "big-ip policy enforcement manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "storwize v3500",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "big-ip local traffic manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.11.11"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6_ppc64"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.8.15"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.10.0"
          },
          {
            "_id": null,
            "model": "stn7800",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "4.1.2.06"
          },
          {
            "_id": null,
            "model": "big-ip policy enforcement manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "zenworks configuration management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.14.4f"
          },
          {
            "_id": null,
            "model": "enterprise linux for scientific computing",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.5"
          },
          {
            "_id": null,
            "model": "storwize v3500",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "flex system v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0.11"
          },
          {
            "_id": null,
            "model": "zenworks configuration management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "storwize v3700",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0.11"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "flex system v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "stn6500",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.8.0.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.5"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.4"
          },
          {
            "_id": null,
            "model": "stn7800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "4.1.2.0"
          },
          {
            "_id": null,
            "model": "big-ip advanced firewall manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "infosphere guardium database activity monitoring",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "security access manager for web 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.3"
          },
          {
            "_id": null,
            "model": "storwize v3700",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "storwize v3500",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.7"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.0.0.4"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.14.0"
          },
          {
            "_id": null,
            "model": "mageia",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mageia",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5_s390x"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "big-ip access policy manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "traffix signaling delivery controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "6.0.0"
          },
          {
            "_id": null,
            "model": "eos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "arista",
            "version": "4.12.9"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "storwize v3500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0.11"
          },
          {
            "_id": null,
            "model": "stn6800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.9.1.0"
          },
          {
            "_id": null,
            "model": "big-ip advanced firewall manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.5.0.0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.2"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "big-ip local traffic manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "big-ip local traffic manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "zenworks configuration management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "novell",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "storwize v3500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "stn6800",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.9.1.08"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.9"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.2"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "big-ip wan optimization manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "qts",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "qnap",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "6.4.0"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3_ppc64"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile 8.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "8.0.0.3"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "storwize v5000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.7"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "studio onsite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5_ppc64"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storwize v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "1.4.3.5"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.4_s390x"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "stn6800",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.8.0.07"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "big-ip application acceleration manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip protocol security module",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0_ppc64"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "stn6500",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.9.1.0"
          },
          {
            "_id": null,
            "model": "mageia",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mageia",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for power big endian",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.9_ppc"
          },
          {
            "_id": null,
            "model": "big-ip global traffic manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.1.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.1.0"
          },
          {
            "_id": null,
            "model": "infosphere guardium database activity monitoring",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "stn6500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.9.1.08"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "security access manager for web 7.0",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.0.0.4"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6_s390x"
          },
          {
            "_id": null,
            "model": "enterprise linux for scientific computing",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "big-ip access policy manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "qradar risk manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server from rhui",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3_s390x"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "stn7800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "3.8.0.0"
          },
          {
            "_id": null,
            "model": "flex system v7000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.3.0.7"
          },
          {
            "_id": null,
            "model": "qradar security information and event manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "qts",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "qnap",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "big-ip protocol security module",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "unified contact center express",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "manageone v100r002c10",
            "scope": null,
            "trust": 0.9,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "barracuda",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "centos",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cygwin",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dell computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "extreme",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fedora",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fireeye",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gnu bash",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mageia",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "monroe",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "niksun",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "novell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "palo alto",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnap security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sophos",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "trend micro",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vmware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "xirrus",
            "version": null
          },
          {
            "_id": null,
            "model": "qts",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "qnap",
            "version": "4.1.1 build 0927  and earlier"
          },
          {
            "_id": null,
            "model": "qts",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "qnap",
            "version": null
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "7245"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "7242"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "7238"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "7235"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "7232"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "7228"
          },
          {
            "_id": null,
            "model": "phaser",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "78000"
          },
          {
            "_id": null,
            "model": "phaser",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "67000"
          },
          {
            "_id": null,
            "model": "colorqube",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "9393"
          },
          {
            "_id": null,
            "model": "colorqube",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "9303"
          },
          {
            "_id": null,
            "model": "colorqube",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "9302"
          },
          {
            "_id": null,
            "model": "colorqube",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xerox",
            "version": "9301"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "vm virtualbox",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "oracle",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "vm virtualbox",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "oracle",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "email gateway patch",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "mcafee",
            "version": "7.01"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "mcafee",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "ds8000",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "gnu",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.6,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "gss 4492r global site selector",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "digital media manager",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "digital media manager",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "show and share",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "5(2)"
          },
          {
            "_id": null,
            "model": "ip deskphone",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "avaya",
            "version": "96x16.2"
          },
          {
            "_id": null,
            "model": "ip deskphone",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "avaya",
            "version": "96x16"
          },
          {
            "_id": null,
            "model": "manageone v100r002c00",
            "scope": null,
            "trust": 0.6,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "manageone v100r002c20",
            "scope": null,
            "trust": 0.6,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "unity connection",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "11"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "email gateway hotfix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.7.22"
          },
          {
            "_id": null,
            "model": "email gateway hotfix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.7.21"
          },
          {
            "_id": null,
            "model": "network analysis module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning fixpack for sv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1689.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.924.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1049.1"
          },
          {
            "_id": null,
            "model": "oceanstor s5300 v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375127"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.31"
          },
          {
            "_id": null,
            "model": "ucs invicta appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.71"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.51"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.166"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.891.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.15"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.306.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1012"
          },
          {
            "_id": null,
            "model": "manageone v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "e9000 blade server ch220 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1005.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.42"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "integration bus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.0.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1039"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.47",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.434.0"
          },
          {
            "_id": null,
            "model": "telepresence manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.702.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1311.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.687.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.365.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.879.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.74"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.317.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.92"
          },
          {
            "_id": null,
            "model": "protectier appliance edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.926.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.47255"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.39"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v200r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1077.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.366.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.97"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.530.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2053-4240"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.58"
          },
          {
            "_id": null,
            "model": "ip interoperability and collaboration system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "asr series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "50000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.122"
          },
          {
            "_id": null,
            "model": "key vault",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.59"
          },
          {
            "_id": null,
            "model": "database appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "12.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.57"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "cloudsystem enterprise software",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.1.2"
          },
          {
            "_id": null,
            "model": "junos space ja1500 appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "horizon workspace",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.8"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "move antivirus agentless",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.366.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1036.2"
          },
          {
            "_id": null,
            "model": "oceanstor dorado g2 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "2100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1308.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.633.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.0"
          },
          {
            "_id": null,
            "model": "download server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.769.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "prime license manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura conferencing standard",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.127"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.40vs",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.785.0"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "9"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.225"
          },
          {
            "_id": null,
            "model": "secureplatform r77.10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.385.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.319.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.908.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.204"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.62"
          },
          {
            "_id": null,
            "model": "oceanstor s5600 v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "unified intelligence center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.366.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.219"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.374.0"
          },
          {
            "_id": null,
            "model": "email gateway patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.52"
          },
          {
            "_id": null,
            "model": "secureplatform r77",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.86"
          },
          {
            "_id": null,
            "model": "secureplatform r75.10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.40"
          },
          {
            "_id": null,
            "model": "oneview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1043"
          },
          {
            "_id": null,
            "model": "rack server rh2288 v100r002c0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.8"
          },
          {
            "_id": null,
            "model": "move antivirus agentless",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.604.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.44"
          },
          {
            "_id": null,
            "model": "secureplatform r70",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.35"
          },
          {
            "_id": null,
            "model": "gaia embedded r71.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.150"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.0"
          },
          {
            "_id": null,
            "model": "vcenter orchestrator appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.756.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.886.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.123"
          },
          {
            "_id": null,
            "model": "ipso r75.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "worklight quality assurance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2"
          },
          {
            "_id": null,
            "model": "oceanstor s2200t v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.51"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r77.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.233"
          },
          {
            "_id": null,
            "model": "nvp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.88"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v200r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.955.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1082.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.760.0"
          },
          {
            "_id": null,
            "model": "secure access link",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.110"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.12"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1658.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.368.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.23"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.594.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.118"
          },
          {
            "_id": null,
            "model": "clean access manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.743.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.8"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1285.2"
          },
          {
            "_id": null,
            "model": "finesse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.96365"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.83"
          },
          {
            "_id": null,
            "model": "2054-e01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.816.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.88"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.13"
          },
          {
            "_id": null,
            "model": "telepresence tx series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.393.0"
          },
          {
            "_id": null,
            "model": "e9000 blade server ch140 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.362.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.618.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.628.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.56"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.815.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.423.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.8"
          },
          {
            "_id": null,
            "model": "system storage san80b-4 2498-b80",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.802.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.12"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "26.0.1410.46"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.5"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.323.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.804.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.77"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.370.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.203"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.95"
          },
          {
            "_id": null,
            "model": "espace uc v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.805.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.789.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.315"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.512.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.109"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.901.0"
          },
          {
            "_id": null,
            "model": "t520 flexible thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "gaia r75.46",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "aura application server sip core pb23",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1285.0"
          },
          {
            "_id": null,
            "model": "associates api management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.729.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.102"
          },
          {
            "_id": null,
            "model": "isoc v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.15"
          },
          {
            "_id": null,
            "model": "colorqube",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "8700"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.483.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.467.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.200"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.10"
          },
          {
            "_id": null,
            "model": "secureplatform r70.50",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.25"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.0"
          },
          {
            "_id": null,
            "model": "qip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alcatel lucent",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.452.1"
          },
          {
            "_id": null,
            "model": "ssl vpn",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "e9000 blade server ch242 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1017"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.727.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.748.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.7"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.89"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "8.1.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.379.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.302.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.654.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.72"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r005c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4"
          },
          {
            "_id": null,
            "model": "rack server rh2285h v100r002c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.119"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.8"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.73"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.4.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.334.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.862.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.37"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.303"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.458.0"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.721.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.404.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.335.0"
          },
          {
            "_id": null,
            "model": "system storage san384b-2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2499-416"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1030"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.132"
          },
          {
            "_id": null,
            "model": "uma-db v100r001c00spc302",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.336"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.32"
          },
          {
            "_id": null,
            "model": "proventia network enterprise scanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.211"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.602.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1049.2"
          },
          {
            "_id": null,
            "model": "2054-e04",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "virtualization provisioning service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "espace usm v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.104"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1058.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.415.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.931.0"
          },
          {
            "_id": null,
            "model": "asset manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.115"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.722.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.520.0"
          },
          {
            "_id": null,
            "model": "network security sensor appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1022"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.5.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.651.0"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.109"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gnu",
            "version": "3.2.48"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.16.1.0.9.8"
          },
          {
            "_id": null,
            "model": "secure access link gas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.476.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.61"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1055.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1670.1"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r005c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.354.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.124"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.222.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.690.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.75"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.570.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.347.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.13"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.98"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.412.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.27"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "vcloud connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.634.1"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "secureplatform r77.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "vsphere management assistant",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.329.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.1"
          },
          {
            "_id": null,
            "model": "sdn for virtual environments",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "network data loss prevention",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1085.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.664.1"
          },
          {
            "_id": null,
            "model": "gaia r75.40vs",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.26"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.83"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.596.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.103"
          },
          {
            "_id": null,
            "model": "espace cc v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.113"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.69"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.730.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1060.0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.40"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.610.0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.422.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.48"
          },
          {
            "_id": null,
            "model": "oceanstor cse v100r002c00lhwy01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.24"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb28",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.116"
          },
          {
            "_id": null,
            "model": "cloud single sign on",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.299.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.31"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.02"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1036.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.19"
          },
          {
            "_id": null,
            "model": "secureplatform r75.45",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.371.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1668.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.107"
          },
          {
            "_id": null,
            "model": "vfabric postgres",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "9.1.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.615.0"
          },
          {
            "_id": null,
            "model": "telepresence system series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.599.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.99"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.51"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.452.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.102"
          },
          {
            "_id": null,
            "model": "ios-xe for catalyst 4k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.12"
          },
          {
            "_id": null,
            "model": "oceanstor hvs85t v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.92"
          },
          {
            "_id": null,
            "model": "system networking san24b-5 2498-f24",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "75250"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1675.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.50"
          },
          {
            "_id": null,
            "model": "associates layer mobile access gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "70"
          },
          {
            "_id": null,
            "model": "telepresence ip gateway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.28"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.873.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.301.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.116"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.366.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.794.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.40"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v200r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.781.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1298.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.157.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.134"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.18"
          },
          {
            "_id": null,
            "model": "secureplatform r70.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.72"
          },
          {
            "_id": null,
            "model": "oceanstor v100r001c10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "secureplatform r71.40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "power hmc r7.9.0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.554.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.775.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.13"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.08.0.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.631.0"
          },
          {
            "_id": null,
            "model": "ios-xe for asr903",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.125"
          },
          {
            "_id": null,
            "model": "move scheduler",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.102"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.54"
          },
          {
            "_id": null,
            "model": "ediscovery identification and collection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.477.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.941.0"
          },
          {
            "_id": null,
            "model": "scale out network attached storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4.3.4"
          },
          {
            "_id": null,
            "model": "secureplatform r75",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.335.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.516.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.430.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1684.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.457.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1289.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1008.0"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.943.0"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.21"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.609.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364160"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.211.0"
          },
          {
            "_id": null,
            "model": "ios-xe for isr4400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.42"
          },
          {
            "_id": null,
            "model": "t5565 thin client hp t5565z smart client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "nvp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.582.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.589.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "26.0.1410.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.575.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1671.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1663.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.26"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "media experience engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "message networking sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.356.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1280.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.122"
          },
          {
            "_id": null,
            "model": "3722-s52",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.39"
          },
          {
            "_id": null,
            "model": "vcenter orchestrator appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.726.0"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.667.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.117"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1034.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.81"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.36"
          },
          {
            "_id": null,
            "model": "algo risk service on cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v200r002c20",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "gaia embedded r71.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.32"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.716.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.480.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.700.0"
          },
          {
            "_id": null,
            "model": "associates application performance management cloud monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "high-density server dh310 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.28"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.9.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1684.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.5"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "high-density server dh628 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.21"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.7"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v200r002c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1652.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.6"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.627.0"
          },
          {
            "_id": null,
            "model": "network convergence system series routers",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "60005.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.4"
          },
          {
            "_id": null,
            "model": "gaia r75.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.28"
          },
          {
            "_id": null,
            "model": "firewall enterprise control center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.19"
          },
          {
            "_id": null,
            "model": "e9000 chassis v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "session border controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.69"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.826.0"
          },
          {
            "_id": null,
            "model": "oceanstor hdp3500e v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.581.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.1"
          },
          {
            "_id": null,
            "model": "secure access link",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.544.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.130"
          },
          {
            "_id": null,
            "model": "ipso r77",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "cloudsystem foundation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "ip office application server sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.01"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1041"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.42"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.336.0"
          },
          {
            "_id": null,
            "model": "storeever esl g3 tape library 665h gs12501",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "associates layer api gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.124"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1295.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.922.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.113"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.638.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1049.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.21"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.219"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.910.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.149"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1686.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.90"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.6"
          },
          {
            "_id": null,
            "model": "firewall enterprise control center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.69"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.366.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1055.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.671.0"
          },
          {
            "_id": null,
            "model": "bsc6000 v900r008c15",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.66"
          },
          {
            "_id": null,
            "model": "oceanstor s2600 v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.68"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.424.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.898.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.478.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.107"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.465.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.540.0"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.57"
          },
          {
            "_id": null,
            "model": "system storage san384b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2499-192"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.46"
          },
          {
            "_id": null,
            "model": "ip office application server sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.02"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1004.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.136"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.935.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.821.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.212.1"
          },
          {
            "_id": null,
            "model": "studio",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.492.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.33"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "57550"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.923.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.547.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.948.0"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.114"
          },
          {
            "_id": null,
            "model": "rack server rh2288h v100r002c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1024.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.784.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.48"
          },
          {
            "_id": null,
            "model": "oceanstor css v100r001c03",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.2.149.30"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.44"
          },
          {
            "_id": null,
            "model": "vsphere storage appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.80"
          },
          {
            "_id": null,
            "model": "system storage san06b-r 2498-r06",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "business service automation essentials",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.16"
          },
          {
            "_id": null,
            "model": "aura experience portal sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.16"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.90"
          },
          {
            "_id": null,
            "model": "fusionmanager v100r003c10cp6001",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "unified presence server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1017.2"
          },
          {
            "_id": null,
            "model": "secureplatform r71.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "gaia embedded r71.45",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.683.0"
          },
          {
            "_id": null,
            "model": "network security sensor appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.97"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.425.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.486.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.747.0"
          },
          {
            "_id": null,
            "model": "oceanstor vis6600t v200r003c10spc100",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.450.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.333"
          },
          {
            "_id": null,
            "model": "websphere process server hypervisor edition for novell suse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.775.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.9"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.99"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1077.2"
          },
          {
            "_id": null,
            "model": "studio beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "qradar risk manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "storefabric b-series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1300.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.17"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.42"
          },
          {
            "_id": null,
            "model": "show and share",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mxe series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.889.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1028"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.33"
          },
          {
            "_id": null,
            "model": "vcloud automation center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.133"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.773.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.26"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.2"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.10"
          },
          {
            "_id": null,
            "model": "storeonce backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.157"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.739.0"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.5.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.404.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.27"
          },
          {
            "_id": null,
            "model": "operation agent virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.2491059"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.2"
          },
          {
            "_id": null,
            "model": "ios-xe for csr1000v",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.159.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18"
          },
          {
            "_id": null,
            "model": "oceanstor sns5120 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1028.0"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1013"
          },
          {
            "_id": null,
            "model": "espace vcn3000 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.658.0"
          },
          {
            "_id": null,
            "model": "real-time compression appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.9.1"
          },
          {
            "_id": null,
            "model": "e9000 chassis v100r001c00spc200",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "vcenter server appliance update b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1023"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.369.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.761.0"
          },
          {
            "_id": null,
            "model": "cloud services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.690.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.103"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.16"
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.660.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.511.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1676.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.108"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.41"
          },
          {
            "_id": null,
            "model": "messaging application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.137"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1669.1"
          },
          {
            "_id": null,
            "model": "secure access remote access concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.587.0"
          },
          {
            "_id": null,
            "model": "usc invicta series autosupport portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.437.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.16"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.321.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.14"
          },
          {
            "_id": null,
            "model": "secureplatform r71.45",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.48"
          },
          {
            "_id": null,
            "model": "nexus switch for nexus series 5.0 u1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1000v3000"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "56000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.62"
          },
          {
            "_id": null,
            "model": "fusionaccess v100r005c10spc203",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.861.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.524.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.717.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.11"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.880.0"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.607.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.471.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.61"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.59"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.45",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.923.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.37"
          },
          {
            "_id": null,
            "model": "oceanstor cse v100r002c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.450.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.309.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.232"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.58"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.778.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.74"
          },
          {
            "_id": null,
            "model": "email gateway patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.03"
          },
          {
            "_id": null,
            "model": "protectier entry edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "horizon daas platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.447.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.655.0"
          },
          {
            "_id": null,
            "model": "operation agent virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.4.154.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.115"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.579.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1008"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.116"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.694.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.669.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1671.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.97"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.702.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.3"
          },
          {
            "_id": null,
            "model": "gaia embedded r70.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "visualization fault and performance manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "0"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "gtsoftx3000 v200r001c01sph106",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "esxi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.190.2"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0.00"
          },
          {
            "_id": null,
            "model": "qlogic virtual fabric extension module for ibm bladecenter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.3.05.00"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.0.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.400.0"
          },
          {
            "_id": null,
            "model": "vertica",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "flex system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.97"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.74"
          },
          {
            "_id": null,
            "model": "vsphere data protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.592.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.26"
          },
          {
            "_id": null,
            "model": "vfabric application director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "storeever esl e-series tape library",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vds service broker",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.902.0"
          },
          {
            "_id": null,
            "model": "telepresence multipoint switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "ipso r70.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "oceanstor s3900 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "ipso r77.10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "ip deskphones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "96x16.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.444.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.39"
          },
          {
            "_id": null,
            "model": "d9036 modular encoding platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.104"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1272.0"
          },
          {
            "_id": null,
            "model": "fusionstorage dsware v100r003c02spc201",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "secureplatform r75.47",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.548.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1017.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.954.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.640.0"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.2"
          },
          {
            "_id": null,
            "model": "pod orchestration suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.23"
          },
          {
            "_id": null,
            "model": "traffix sdc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "qradar vulnerability manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.88"
          },
          {
            "_id": null,
            "model": "oceanstor v100r001c02",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v1800"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.18"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "77100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.110"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.514"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.759.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "telepresence video communication server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.587.1"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.84"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.59"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "n series oncommand 6.1r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.42"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "esight network v200r003c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "77000"
          },
          {
            "_id": null,
            "model": "e6000 blade server bh621 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1305.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.56"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.314.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.69"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "cloud identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.13"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.3"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.0.9.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1661.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.30"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.662.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.149"
          },
          {
            "_id": null,
            "model": "gaia r75.47",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "flashsystem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v8400"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.833.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.47"
          },
          {
            "_id": null,
            "model": "gaia r71.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.119"
          },
          {
            "_id": null,
            "model": "vcenter hyperic server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "privileged identity manager virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1281.2"
          },
          {
            "_id": null,
            "model": "vcenter operations manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.8.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.810.0"
          },
          {
            "_id": null,
            "model": "ipso r75.40vs",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "gaia ngx r65",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.23"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.871.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.41"
          },
          {
            "_id": null,
            "model": "system storage san40b-4 2498-b40",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "e6000 chassis v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1681.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.98"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.88"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.649.0"
          },
          {
            "_id": null,
            "model": "oneview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.78"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.354.1"
          },
          {
            "_id": null,
            "model": "flex system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.316.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.9"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.90"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "75350"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.692.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.7"
          },
          {
            "_id": null,
            "model": "universal small cell cloudbase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.83"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11"
          },
          {
            "_id": null,
            "model": "cloudsystem foundation",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.93"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.639.0"
          },
          {
            "_id": null,
            "model": "wireless lan wos with aos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "91007.0.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.98"
          },
          {
            "_id": null,
            "model": "quantum son suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.630.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.3.154.0"
          },
          {
            "_id": null,
            "model": "telepresence recording server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.885.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.52"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "ipso r71.50",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "oceanstor v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "18500"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.569.0"
          },
          {
            "_id": null,
            "model": "workcentre r15-03 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7755061.090.225.06200"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.962.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1675.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.306.0"
          },
          {
            "_id": null,
            "model": "nac guest server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.295.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.75"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.123"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.318.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.619.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.14"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.63"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "t620 flexible quad core thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "network data loss prevention",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.6"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7835"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1004"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.86"
          },
          {
            "_id": null,
            "model": "nsm3000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1033"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.124"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.100"
          },
          {
            "_id": null,
            "model": "vpn gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3050"
          },
          {
            "_id": null,
            "model": "secureplatform r71.10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1044"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.160"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1679.0"
          },
          {
            "_id": null,
            "model": "secureplatform r71.45",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "gaia embedded r71",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7225"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.56"
          },
          {
            "_id": null,
            "model": "storeonce backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.11.3"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.1"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.539.0"
          },
          {
            "_id": null,
            "model": "e6000 blade server bh622 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.661.0"
          },
          {
            "_id": null,
            "model": "insight control for linux central management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.106"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.91"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.939.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.474.0"
          },
          {
            "_id": null,
            "model": "information archive",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.110"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.893.1"
          },
          {
            "_id": null,
            "model": "audit vault and database firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vertica",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1-0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.99"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.42"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.1"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.883.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.306"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.62"
          },
          {
            "_id": null,
            "model": "galax8800 v100r003c10cp6001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.348.0"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.515"
          },
          {
            "_id": null,
            "model": "life cycle management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.62"
          },
          {
            "_id": null,
            "model": "t410 smart zero client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.7"
          },
          {
            "_id": null,
            "model": "edge digital media player",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3400"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.120"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.935.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.705.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1082.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.122"
          },
          {
            "_id": null,
            "model": "application dependency planner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.395.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1016.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.118"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.776.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1305.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.84"
          },
          {
            "_id": null,
            "model": "system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x0"
          },
          {
            "_id": null,
            "model": "system storage san768b-2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2499-816"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1075.0"
          },
          {
            "_id": null,
            "model": "visual quality experience server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.33"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.172"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.20"
          },
          {
            "_id": null,
            "model": "oceanstor uds v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.117"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.535.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.16"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.443.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.296.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.107"
          },
          {
            "_id": null,
            "model": "gaia r70.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "secure access core concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.34"
          },
          {
            "_id": null,
            "model": "esight network v200r003c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.18"
          },
          {
            "_id": null,
            "model": "videoscape distribution suite transparent caching",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.776.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.96379"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.217"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.40"
          },
          {
            "_id": null,
            "model": "9710-e08",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vcenter infrastructure navigator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "network security sensor appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1074.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.900.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.126"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.75"
          },
          {
            "_id": null,
            "model": "junos space ja2500 appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.71"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.5.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.611.1"
          },
          {
            "_id": null,
            "model": "vm virtualbox",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.407.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.892.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.29"
          },
          {
            "_id": null,
            "model": "vsphere big data extensions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.518.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.346.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1658.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.897.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.102"
          },
          {
            "_id": null,
            "model": "oceanstor css v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.421.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.132"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.56"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "prime lan management solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.85"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.0"
          },
          {
            "_id": null,
            "model": "ipso r75.10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "vcenter log insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "36.0.1985.143"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "security virtual server protection for vmware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1003.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.382.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.927.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.23"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "storeever esl g3 tape library 671h gs00601",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "nexus switch for nexus series 4.0 n1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1000v5000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.16"
          },
          {
            "_id": null,
            "model": "nac server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1021.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.462.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.77"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.0.3"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "vcenter server appliance update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.51"
          },
          {
            "_id": null,
            "model": "smart zero core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.818.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.645.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.4"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.1.1539"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.126"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1065.0"
          },
          {
            "_id": null,
            "model": "database appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2"
          },
          {
            "_id": null,
            "model": "storeever esl g3 tape library 663h gs04601",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.674.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.39"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "57350"
          },
          {
            "_id": null,
            "model": "hyper-scale manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.0.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.905.0"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10000"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "gaia r71.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.531.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.84"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0.34024"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1284.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.115"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1040.0"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.939.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4"
          },
          {
            "_id": null,
            "model": "secureplatform r77",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.758.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.93"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.116"
          },
          {
            "_id": null,
            "model": "intrusion prevention system solutions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.99"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.184"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.154"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.344"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.419.0"
          },
          {
            "_id": null,
            "model": "operations analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.672.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.608.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.40"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.03"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.135"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.675.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.222.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.124"
          },
          {
            "_id": null,
            "model": "high-density server dh620 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.9"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1072.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.437.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.102"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v200r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "smart zero core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.435.0"
          },
          {
            "_id": null,
            "model": "oceanstor vtl6000 v100r003c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.8"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.215"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.617.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.9"
          },
          {
            "_id": null,
            "model": "storeever esl g3 tape library 655h gs10201",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1019.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.64"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.71"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.685.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.312"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.30"
          },
          {
            "_id": null,
            "model": "flex system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.110"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.699.0"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.453.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.961.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.202"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "75300"
          },
          {
            "_id": null,
            "model": "ucs b-series servers",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.341"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.116"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.57"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1058"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1662.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1669.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1054"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.506.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.132"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.16"
          },
          {
            "_id": null,
            "model": "aura experience portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.168"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.35"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1286.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.703.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.668.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.744.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "configuration and orchestration manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.74"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "75450"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1078.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.328.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.91"
          },
          {
            "_id": null,
            "model": "sig9800 sig9800-x16 v300r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.381.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.144"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.102"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1283.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.25"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.711.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.109"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.330"
          },
          {
            "_id": null,
            "model": "automation insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.00"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.21"
          },
          {
            "_id": null,
            "model": "vcenter log insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "ios-xe for asr1k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.511.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.686.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.147"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.797.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "oic v100r001c00spc403",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.14443"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.521.0"
          },
          {
            "_id": null,
            "model": "vfabric application director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.46"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.774.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.458.2"
          },
          {
            "_id": null,
            "model": "business edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.350.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.803.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.623.0"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.51"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.21"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.49"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "cloudsystem enterprise software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.345.0"
          },
          {
            "_id": null,
            "model": "secureplatform r71.30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.215"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1001.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.686.3"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.859.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1674.1"
          },
          {
            "_id": null,
            "model": "business service automation essentials",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.930.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.562.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r77.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.798.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.227"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.302"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.416.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1077.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.59"
          },
          {
            "_id": null,
            "model": "dc health check",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.85"
          },
          {
            "_id": null,
            "model": "enterprise linux long life 5.9.server",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.111"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7855"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.647.0"
          },
          {
            "_id": null,
            "model": "uma v200r001c00spc202",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.937.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.26"
          },
          {
            "_id": null,
            "model": "gaia embedded r75",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v200r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.277.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.71"
          },
          {
            "_id": null,
            "model": "network security sensor appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.350.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.30"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.136"
          },
          {
            "_id": null,
            "model": "t510 flexible thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.867.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.120"
          },
          {
            "_id": null,
            "model": "gaia r71.45",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.329"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.25"
          },
          {
            "_id": null,
            "model": "rack server rh2285 v100r002c0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.746.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.70"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1287.1"
          },
          {
            "_id": null,
            "model": "sdn for virtual environments",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.753.0"
          },
          {
            "_id": null,
            "model": "chrome beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "26.0.1410.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1038.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.288.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.7"
          },
          {
            "_id": null,
            "model": "nvs v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.496.0"
          },
          {
            "_id": null,
            "model": "manageone v100r001c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.294.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.109"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.728.0"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.85"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1036.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.706.0"
          },
          {
            "_id": null,
            "model": "chrome beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.824.0"
          },
          {
            "_id": null,
            "model": "2054-e07",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.28"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.453.0"
          },
          {
            "_id": null,
            "model": "unstructured data identification and mgmt",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.35"
          },
          {
            "_id": null,
            "model": "ipso r71.30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.585.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.68"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "e6000 blade server bh640 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.557.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.91"
          },
          {
            "_id": null,
            "model": "smart zero core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.15"
          },
          {
            "_id": null,
            "model": "message networking sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.85"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.549.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.88"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.5"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.111"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.314.1"
          },
          {
            "_id": null,
            "model": "boot attestation service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "vcloud director appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "global threat intelligence proxy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.207"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.440.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.343.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1053.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.957.0"
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "60000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.573.0"
          },
          {
            "_id": null,
            "model": "high-density server dh320 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1055"
          },
          {
            "_id": null,
            "model": "espace dcm v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.806.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.4.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "18800"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.356.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.863.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.652.0"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.5"
          },
          {
            "_id": null,
            "model": "exalytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oneview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.01"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "26.0.1410.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.719.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.952.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.2"
          },
          {
            "_id": null,
            "model": "secureplatform r75.45",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.401.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.495.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1019"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.872.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.57"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1022.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.153"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.341.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.11"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.4.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.223"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1657.0"
          },
          {
            "_id": null,
            "model": "espace ums v200r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1273.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.75"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1274.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.954.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1056.0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800e v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1303.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.8.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1015"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.714.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.8"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.13"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.6"
          },
          {
            "_id": null,
            "model": "system storage storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.150"
          },
          {
            "_id": null,
            "model": "secureplatform r70.1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.230"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.942.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r70",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.4"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb19",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.49"
          },
          {
            "_id": null,
            "model": "prime ip express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375125"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.128"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.720.0"
          },
          {
            "_id": null,
            "model": "healthanalyzer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.904.0"
          },
          {
            "_id": null,
            "model": "gaia r77",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.222.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.212"
          },
          {
            "_id": null,
            "model": "oceanstor s5900 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.94"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.500.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.116"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.55"
          },
          {
            "_id": null,
            "model": "strm/jsa",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2013.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.22"
          },
          {
            "_id": null,
            "model": "autobackup server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.85"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.69"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1659.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1052.0"
          },
          {
            "_id": null,
            "model": "videoscape conductor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.305.0"
          },
          {
            "_id": null,
            "model": "high-density server xh310 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1034"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.145"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.646.0"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.911.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.697.0"
          },
          {
            "_id": null,
            "model": "asa cx and cisco prime security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.222"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.593.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.667.2"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.41"
          },
          {
            "_id": null,
            "model": "asset manager sensor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.7"
          },
          {
            "_id": null,
            "model": "quantum virtualized packet core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.120"
          },
          {
            "_id": null,
            "model": "network data loss prevention",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.100"
          },
          {
            "_id": null,
            "model": "hosted collaboration mediation fulfillment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.928.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.20"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.339.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1060.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.626.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1031.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.80"
          },
          {
            "_id": null,
            "model": "standalone rack server cimc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.708.0"
          },
          {
            "_id": null,
            "model": "information archive",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.559.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.625.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.64"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "e9000 blade server ch240 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor 9000e v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1009.0"
          },
          {
            "_id": null,
            "model": "oceanstor css v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.326"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1062.1"
          },
          {
            "_id": null,
            "model": "hyperdp oceanstor n8500 v200r001c09",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.203"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.881.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.800.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.680.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.659.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.37599"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.330.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.2"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.93"
          },
          {
            "_id": null,
            "model": "power hmc r7.6.0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7"
          },
          {
            "_id": null,
            "model": "rack server rh1288 v100r002c0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1001"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.18"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "11000"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.70"
          },
          {
            "_id": null,
            "model": "tam data manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1056"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.33"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.96"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.768.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.871.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r76",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "9710-e01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1010.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.35"
          },
          {
            "_id": null,
            "model": "oceanstor hvs85t v100r001c99",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1304.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.61"
          },
          {
            "_id": null,
            "model": "ipso r75.46",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "flex system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.670.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.378.0"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.27"
          },
          {
            "_id": null,
            "model": "qlogic gb intelligent pass-thru module for ibm bladecenter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "87.10.1.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.551.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1281.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1037"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.611.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1060"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.126"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.547.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.300.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.509.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.387.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.382.3"
          },
          {
            "_id": null,
            "model": "vcenter site recovery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.290.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7970"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.50"
          },
          {
            "_id": null,
            "model": "gaia os r75.0",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "nsx for multi-hypervisor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.386.0"
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.15"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1056.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1670.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.839.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1281.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1277.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.764.0"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning fixpack for sv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.97"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.616.0"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.66"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.105"
          },
          {
            "_id": null,
            "model": "nexus intercloud for vmware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1000v0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.4.154.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.45"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.71"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.564.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1046"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1081.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.868.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.220"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.2"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.42"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "8.1.72"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.397.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.70"
          },
          {
            "_id": null,
            "model": "secureplatform r70.30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.99"
          },
          {
            "_id": null,
            "model": "oceanstor n8000 oceanstor s2300",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v100"
          },
          {
            "_id": null,
            "model": "prime collaboration provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.85"
          },
          {
            "_id": null,
            "model": "security access manager for enterprise single sign-on",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.7"
          },
          {
            "_id": null,
            "model": "move antivirus multi-platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "ib6131 40gb infiniband switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.491.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.74"
          },
          {
            "_id": null,
            "model": "exadata storage server software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "nsm3000 appliances",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2012.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1054.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1017.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.535.1"
          },
          {
            "_id": null,
            "model": "espace u2990 v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1289.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.58"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.825.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.814.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.600.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.566.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.132"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.137"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.877.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.860.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.475.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1070.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.102"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "aura conferencing standard edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "local collector appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "vfabric postgres",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "9.2.4"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.958.1"
          },
          {
            "_id": null,
            "model": "gaia r77.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.94"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.16"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.3"
          },
          {
            "_id": null,
            "model": "vcenter server appliance update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.11"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.31"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4"
          },
          {
            "_id": null,
            "model": "oceanstor s8100 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.415.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "gaia embedded r70.50",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.108"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.32"
          },
          {
            "_id": null,
            "model": "vcenter application discovery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1020.0"
          },
          {
            "_id": null,
            "model": "enterprise linux els",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.614.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.57"
          },
          {
            "_id": null,
            "model": "gaia embedded r70.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.344.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.9"
          },
          {
            "_id": null,
            "model": "move antivirus multi-platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.235"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.156.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.111"
          },
          {
            "_id": null,
            "model": "flashsystem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8400"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.715.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.5"
          },
          {
            "_id": null,
            "model": "workcentre spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7535061.121.225.06100"
          },
          {
            "_id": null,
            "model": "service control engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "80000"
          },
          {
            "_id": null,
            "model": "secureplatform r75.40vs",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "t620 flexible dual core thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005c50",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.17"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.505.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1063.0"
          },
          {
            "_id": null,
            "model": "aura system manager sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.286.0"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r71.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor vis6600t v200r003c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.15"
          },
          {
            "_id": null,
            "model": "vcloud automation center application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.723.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.134"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.725.0"
          },
          {
            "_id": null,
            "model": "oceanstor 9000e v100r002c19",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storefabric h-series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence conductor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.224"
          },
          {
            "_id": null,
            "model": "ipso r70.30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "email gateway patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.8"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.52"
          },
          {
            "_id": null,
            "model": "flex system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.672.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.358.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.151"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.2"
          },
          {
            "_id": null,
            "model": "vcenter infrastructure navigator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.107"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.754.0"
          },
          {
            "_id": null,
            "model": "ipso r75",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1007"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1659.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.783.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.19"
          },
          {
            "_id": null,
            "model": "ios-xr",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1047"
          },
          {
            "_id": null,
            "model": "flex system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1052"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.78"
          },
          {
            "_id": null,
            "model": "gaia r70.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1690.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.687.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.5"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.308"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.820.0"
          },
          {
            "_id": null,
            "model": "associates user activity reporting module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1044.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.109"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "infosphere balanced warehouse c3000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.432.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.731.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.249.89"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.560.0"
          },
          {
            "_id": null,
            "model": "virtualization performance viewer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.819.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.324.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1048"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.125"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1032.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.162"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.433.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.117"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.201"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.612.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.94"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.153"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.4.154.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.201"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1687.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.903.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.672.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.733.0"
          },
          {
            "_id": null,
            "model": "gaia r76",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "vsphere storage appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "t610 plus flexible thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.749.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.113"
          },
          {
            "_id": null,
            "model": "ediscovery identification and collection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.762.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.719.0"
          },
          {
            "_id": null,
            "model": "siem enterprise security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "traffix sdc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.12"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.72"
          },
          {
            "_id": null,
            "model": "secureplatform r70.40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.271.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.813.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.7"
          },
          {
            "_id": null,
            "model": "oceanstor dorado5100 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.237"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.211"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.673.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.622.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.106"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1063.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.187"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1055.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.383.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.790.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.465.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.319"
          },
          {
            "_id": null,
            "model": "esight uc\u0026c v100r001c20",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.658.1"
          },
          {
            "_id": null,
            "model": "vcenter server appliance patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.8"
          },
          {
            "_id": null,
            "model": "fusionmanager v100r003c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1668.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.37"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "secureplatform r70.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.932.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.101"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005c30",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1064.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.686.0"
          },
          {
            "_id": null,
            "model": "power hmc r7.8.0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7"
          },
          {
            "_id": null,
            "model": "vcenter converter standalone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1651.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.6"
          },
          {
            "_id": null,
            "model": "espace u2990 v200r001c10spc102",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1003.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.322.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.391.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.107"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1664.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.18"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "ios-xe for catalyst air-ct5760",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "virtual pgw softswitch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "22000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.2"
          },
          {
            "_id": null,
            "model": "video surveillance media server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.81"
          },
          {
            "_id": null,
            "model": "prime network analysis module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.755.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1031"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.18"
          },
          {
            "_id": null,
            "model": "pod orchestration suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "elog v100r003c01spc506",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1007.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.326.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1680.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.11"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.603.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.686.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.213"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.23"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1010"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.113"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.337"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.28"
          },
          {
            "_id": null,
            "model": "intelligent automation for cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "websphere process server hypervisor edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.1"
          },
          {
            "_id": null,
            "model": "workcentre spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7530061.121.225.06100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.29"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "vm virtualbox",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "3.3"
          },
          {
            "_id": null,
            "model": "real-time compression appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.37"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1051"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.98"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence te software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "-0"
          },
          {
            "_id": null,
            "model": "secureplatform r71.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.119"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.896.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.59"
          },
          {
            "_id": null,
            "model": "secureplatform r71",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "secureplatform r70.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "socialcast on premise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.152"
          },
          {
            "_id": null,
            "model": "e6000 blade server bh620 v100r002c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.417.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.218"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.334"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.657.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.0"
          },
          {
            "_id": null,
            "model": "isoc v200r001c02spc203",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1049"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.331"
          },
          {
            "_id": null,
            "model": "secureplatform r71.50",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.667.4"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1057"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1673.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.689.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.152"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.55"
          },
          {
            "_id": null,
            "model": "qradar incident forensics mr2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1288.0"
          },
          {
            "_id": null,
            "model": "gtsoftx3000 v200r001c01spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.390.0"
          },
          {
            "_id": null,
            "model": "rack server rh2485 v100r002c0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1655.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.707.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.76"
          },
          {
            "_id": null,
            "model": "secureplatform r70.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "nac appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "gaia r75.45",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "algo one managed data service on cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1081.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1011.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1067.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.72"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gnu",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1664.1"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gnu",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "oceanstor vis6600 v100r002c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.801.0"
          },
          {
            "_id": null,
            "model": "nexus running nxos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "horizon workspace",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1048.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.69"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.807.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.94"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.865.0"
          },
          {
            "_id": null,
            "model": "espace cad v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1296.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.481.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.489.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.9"
          },
          {
            "_id": null,
            "model": "vcenter converter standalone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.55"
          },
          {
            "_id": null,
            "model": "ipso r75.30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.121"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.97"
          },
          {
            "_id": null,
            "model": "media experience engines",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "elog v200r003",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "workcentre spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7556061.121.225.06100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.69"
          },
          {
            "_id": null,
            "model": "enterprise content delivery service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.69"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.91"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.50"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.510"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.96"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.8"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "77750"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.572.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.356.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1055.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "ipso r75.47",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.93"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.786.0"
          },
          {
            "_id": null,
            "model": "mediasense",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "36.0.1985.122"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.20"
          },
          {
            "_id": null,
            "model": "virtualization performance viewer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.59"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1039.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.836.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.447.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.23"
          },
          {
            "_id": null,
            "model": "oceanstor dorado2100 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.642.1"
          },
          {
            "_id": null,
            "model": "ace application control engine module for the cisco catalyst",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6500"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.216"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.591.0"
          },
          {
            "_id": null,
            "model": "flex system 40gb ethernet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.107"
          },
          {
            "_id": null,
            "model": "secureplatform ngx r65",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11"
          },
          {
            "_id": null,
            "model": "cloudsystem foundation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1012.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.278.0"
          },
          {
            "_id": null,
            "model": "pod orchestration suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.413.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.95"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.67"
          },
          {
            "_id": null,
            "model": "smart zero core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.580.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.81"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.123"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.146"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1305.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "google",
            "version": "38.0.2125.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.513.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.2.149.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.30"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.3"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "nsmexpress",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "secure access link",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1042"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.158.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.761.1"
          },
          {
            "_id": null,
            "model": "oceanstor sns2120 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.130"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.765.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.75"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.553.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.494.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.745.0"
          },
          {
            "_id": null,
            "model": "ipso r71",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.484.0"
          },
          {
            "_id": null,
            "model": "vsphere big data extensions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.15"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.52"
          },
          {
            "_id": null,
            "model": "oceanstor cse v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1061.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.829.1"
          },
          {
            "_id": null,
            "model": "oceanstor hvs88t v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.360.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.35"
          },
          {
            "_id": null,
            "model": "traffix sdc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.482.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.32"
          },
          {
            "_id": null,
            "model": "aura communication manager ssp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "telepresence te software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ipso r70.40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "prime collaboration deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1309.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.76"
          },
          {
            "_id": null,
            "model": "vcenter support assistant",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.677.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.890.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.437.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.770.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.364.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "c-series nexus 5k switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.349.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.69"
          },
          {
            "_id": null,
            "model": "unified computing system b-series servers",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "studio",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.450.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.322.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.37"
          },
          {
            "_id": null,
            "model": "workbench",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "application and content networking system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.15"
          },
          {
            "_id": null,
            "model": "system storage san48b-5 2498-f48",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "gaia r70.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.83"
          },
          {
            "_id": null,
            "model": "gaia r77.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7845"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.63"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "75560"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1297.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1026"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1068.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.33"
          },
          {
            "_id": null,
            "model": "secureplatform r71",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.10"
          },
          {
            "_id": null,
            "model": "fusionstorage dsware v100r003c02spc200",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.762.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.369.1"
          },
          {
            "_id": null,
            "model": "services provisioning platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "privileged identity manager virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1.1"
          },
          {
            "_id": null,
            "model": "secureplatform r75.40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "power hmc r7.3.0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.723.1"
          },
          {
            "_id": null,
            "model": "websphere process server hypervisor edition for red hat",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.83"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.103"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.884.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1038"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.83"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1068.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.621.0"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.310"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.14"
          },
          {
            "_id": null,
            "model": "espace v1300n v1300n v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.36"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning fixpack for sv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.12"
          },
          {
            "_id": null,
            "model": "puredata system for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1006"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning fixpack interi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.14"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.811.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.499.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.106"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.709.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.43"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.96"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.54"
          },
          {
            "_id": null,
            "model": "oceanstor uds v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.882.0"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "13000"
          },
          {
            "_id": null,
            "model": "enterprise linux eus 5.9.z server",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1002.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.384.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "gaia r70.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "26.0.1410.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.111"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.118"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.19"
          },
          {
            "_id": null,
            "model": "telepresence exchange system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.157.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.44"
          },
          {
            "_id": null,
            "model": "power hmc r7.7.0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.134"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.721.1"
          },
          {
            "_id": null,
            "model": "cms r17",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.68"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.529.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.750.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.503.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.563.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.88"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.24"
          },
          {
            "_id": null,
            "model": "2417-c48",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.193.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.771.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.603.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.59"
          },
          {
            "_id": null,
            "model": "enterprise s-jis service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.43"
          },
          {
            "_id": null,
            "model": "diagnostic server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.8"
          },
          {
            "_id": null,
            "model": "oceanstor s5500 v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "ipso r77.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.906.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.24"
          },
          {
            "_id": null,
            "model": "vsphere replication",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.169.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.114"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.202"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.86"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.363.0"
          },
          {
            "_id": null,
            "model": "vfabric postgres",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "9.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.601.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1306.0"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning fixpack for sv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.14"
          },
          {
            "_id": null,
            "model": "information archive",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.812.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.944.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.635.0"
          },
          {
            "_id": null,
            "model": "onepk all-in-one vm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "workcentre spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7525061.121.225.06100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.89"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "77550"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "5955"
          },
          {
            "_id": null,
            "model": "oceanstor s3900 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.156"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.96"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1660.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1047.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1036.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.44"
          },
          {
            "_id": null,
            "model": "aura communication manager ssp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.473.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.441.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1012.1"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1040"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1037.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.104"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.0"
          },
          {
            "_id": null,
            "model": "system storage storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.53"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.426.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.752.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.5"
          },
          {
            "_id": null,
            "model": "oceanstor n8500 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.834.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.327.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1654.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.94"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.112"
          },
          {
            "_id": null,
            "model": "aura system manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r005c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "t410 all-in-one rfx/hdx smart zc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "18.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.401.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.15"
          },
          {
            "_id": null,
            "model": "webex node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.493.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.216"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.103"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.327"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.186"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.10"
          },
          {
            "_id": null,
            "model": "ipso ngx r65",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.956.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1662.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.217"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.2491036"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.108"
          },
          {
            "_id": null,
            "model": "horizon workspace",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.8.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.7"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "system storage san768b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2499-384"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.522.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.38"
          },
          {
            "_id": null,
            "model": "data center analytics framework",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "scale out network attached storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4.3.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.94"
          },
          {
            "_id": null,
            "model": "network data loss prevention",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1305.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.30"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.622.1"
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storeall os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.5.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.91"
          },
          {
            "_id": null,
            "model": "digital media players",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.159"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "mirage gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1062.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.2.152.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.556.0"
          },
          {
            "_id": null,
            "model": "oceanstor vtl3500 v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.53"
          },
          {
            "_id": null,
            "model": "identity engines ignition server sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.450.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.119"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.161"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.772.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.322.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.125"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1059.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.29"
          },
          {
            "_id": null,
            "model": "ipso r70",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.398.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.404.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.140"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.531.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.53"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.321"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.94"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.870.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1006.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.91"
          },
          {
            "_id": null,
            "model": "vsphere replication",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.14127"
          },
          {
            "_id": null,
            "model": "secure access remote access concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1653.1"
          },
          {
            "_id": null,
            "model": "virtualization experience client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "62150"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.204"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.551.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1083.0"
          },
          {
            "_id": null,
            "model": "nexus virtual supervisor module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10000"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.301"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.335"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.695.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1021"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1688.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.325"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.732.0"
          },
          {
            "_id": null,
            "model": "video distribution suite for internet streaming vds-is",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1290.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.26"
          },
          {
            "_id": null,
            "model": "vcloud usage meter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.712.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1286.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.98"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.558.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.822.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.120"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.665.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.629.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "bash shell for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.14.8"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0.13974"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v200r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "security virtual server protection for vmware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1012.0"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.339"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.109"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.335.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.763.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.947.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1276.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.168"
          },
          {
            "_id": null,
            "model": "siem enterprise security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.878.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.542.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1663.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.48"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.837.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1014"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.43"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "high-density server xh621 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.529.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.93"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.929.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.324"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.510.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.81"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.3.1549"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.410.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.787.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.323"
          },
          {
            "_id": null,
            "model": "oceanstor 9000e v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "virtualization performance viewer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.01"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.292.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.405.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.212.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.684.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.796.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.2.153.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.4"
          },
          {
            "_id": null,
            "model": "enterprise linux long life server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "ios-xe for catalyst 3k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.121"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1076.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.123"
          },
          {
            "_id": null,
            "model": "gaia embedded r71.50",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7830"
          },
          {
            "_id": null,
            "model": "system networking san96b-5 2498-f96",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.103"
          },
          {
            "_id": null,
            "model": "vcenter server appliance update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.02"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1307.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.120"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.928.1"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "57100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.757.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.360.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.249.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.118"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.97"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.120"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.40"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "colorqube",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "8900"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.832.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1066.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.50"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.702.1"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.316"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.514.1"
          },
          {
            "_id": null,
            "model": "rack server rh5885h v100r003c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1284.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.221.8"
          },
          {
            "_id": null,
            "model": "ipso r75.40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.403.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.0"
          },
          {
            "_id": null,
            "model": "powervu d9190 conditional access manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874102"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.304.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1018.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.360.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1278.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.229"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.572.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.146"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.139"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1282.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1057.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.88"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.303.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.80"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.4"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "gaia embedded r71.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.26"
          },
          {
            "_id": null,
            "model": "aura communication manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.51"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.21"
          },
          {
            "_id": null,
            "model": "elog v200r003c10spc202",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "e9000 blade server ch121 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.436.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.21"
          },
          {
            "_id": null,
            "model": "totalstorage san16b-2 fabric switch 2005-b16",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1030.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.340"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.45"
          },
          {
            "_id": null,
            "model": "move",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1689.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.889.2"
          },
          {
            "_id": null,
            "model": "uma v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.85"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.81"
          },
          {
            "_id": null,
            "model": "aura communication manager ssp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.343"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.531.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.679.0"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.38"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.103"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.300"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.893.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.644.0"
          },
          {
            "_id": null,
            "model": "virtualization performance viewer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.70"
          },
          {
            "_id": null,
            "model": "network configuration and change management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "associates customer experience manager transaction impact monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ip deskphones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "96x16.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.570.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.17"
          },
          {
            "_id": null,
            "model": "totalstorage san256b director model m48 2109-m48",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.81"
          },
          {
            "_id": null,
            "model": "real-time compression appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.313.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.351.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.933.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.10"
          },
          {
            "_id": null,
            "model": "gaia os r76.0",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "ipso r75.45",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.887.0"
          },
          {
            "_id": null,
            "model": "network data loss prevention",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "advanced threat defense",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1"
          },
          {
            "_id": null,
            "model": "workcentre r14-10 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7755061.090.224.30300"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.23"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1288.1"
          },
          {
            "_id": null,
            "model": "exalogic",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor uds v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.36"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1.0.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1498.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.793.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.1"
          },
          {
            "_id": null,
            "model": "vcenter site recovery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.151"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1301.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.71"
          },
          {
            "_id": null,
            "model": "system storage san24b-4 2498-b24",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.205"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.29"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1043.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1000.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.317"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.204"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.909.0"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "76000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.886.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.14"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "36550"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.318"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.96"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.115"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.936.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.488.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.526.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.56"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "nsx for multi-hypervisor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.4.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.808.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.287.0"
          },
          {
            "_id": null,
            "model": "telepresence",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "13100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.584.0"
          },
          {
            "_id": null,
            "model": "aura system platform sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1042.0"
          },
          {
            "_id": null,
            "model": "bash rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gnu",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.33"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.103"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.302.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.369.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.907.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.120"
          },
          {
            "_id": null,
            "model": "scale out network attached storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4.3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.29"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.71"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1685.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.108"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.25"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.81"
          },
          {
            "_id": null,
            "model": "aura system platform sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.823.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.791.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.577.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.8"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1061.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.91"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.1"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10500"
          },
          {
            "_id": null,
            "model": "workcentre r15-03 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7765061.090.225.06200"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.676.0"
          },
          {
            "_id": null,
            "model": "virtual library system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.210"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.525.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.10"
          },
          {
            "_id": null,
            "model": "operations analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.490.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.681.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.495.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.500.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.309"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.97"
          },
          {
            "_id": null,
            "model": "ironport encryption appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.214"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "oceanstor s6900 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1050"
          },
          {
            "_id": null,
            "model": "storeonce gen backup software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "22.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.135"
          },
          {
            "_id": null,
            "model": "oceanstor css v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.416.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.950.0"
          },
          {
            "_id": null,
            "model": "prime service catalog virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.78"
          },
          {
            "_id": null,
            "model": "secureplatform r75.40vs",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "oneview",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.613.0"
          },
          {
            "_id": null,
            "model": "espace meeting v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.32"
          },
          {
            "_id": null,
            "model": "system networking san96b-5 2498-n96",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.182.2"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1276.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.163"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1281.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1049.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.304"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.162"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "77650"
          },
          {
            "_id": null,
            "model": "vfabric postgres",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "9.1.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.305"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.862.0"
          },
          {
            "_id": null,
            "model": "b189 ip conference phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.023"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.464.1"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.682.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.15"
          },
          {
            "_id": null,
            "model": "protectier enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "services vm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.940.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.5"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "oceanstor css v100r001c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.22"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "smart care",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1683.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.151"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.48"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.376.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.50"
          },
          {
            "_id": null,
            "model": "im and presence service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.88"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1077.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1025"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.921.3"
          },
          {
            "_id": null,
            "model": "oceanstor uds v100r002c00lvdf0",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.17"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.1"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.10"
          },
          {
            "_id": null,
            "model": "security virtual server protection for vmware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.155"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.538.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.519.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1041.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.69"
          },
          {
            "_id": null,
            "model": "high-density server dh321 v100r002c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.561.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1306.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1311.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.586.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.928.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.93"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "storeever esl g3 tape library",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.766.0"
          },
          {
            "_id": null,
            "model": "element management system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.740.0"
          },
          {
            "_id": null,
            "model": "proactive network operations center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.125"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.50"
          },
          {
            "_id": null,
            "model": "gaia r75.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "vfabric application director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.603.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.45"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "7"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.4"
          },
          {
            "_id": null,
            "model": "email and web security appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "espace ivs v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.529.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.830.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.75"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.203"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.399.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.126"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.131"
          },
          {
            "_id": null,
            "model": "advanced threat defense",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "chrome beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.249.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.335.2"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.84"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.925.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.64"
          },
          {
            "_id": null,
            "model": "oceanstor n8300 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.499.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.864.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1076.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.447.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.9"
          },
          {
            "_id": null,
            "model": "traffix sdc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.117"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.106"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.63"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "workcentre r14-10 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7765061.090.224.30300"
          },
          {
            "_id": null,
            "model": "it business management suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "t620 plus flexible quad core thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.458.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.208"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1682.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.959.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.106"
          },
          {
            "_id": null,
            "model": "oceanstor v100r001c01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "virtualization performance viewer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.2.149.27"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.624.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.40"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.156"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.612.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.26"
          },
          {
            "_id": null,
            "model": "b189 ip conference phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.18"
          },
          {
            "_id": null,
            "model": "propel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1293.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.38"
          },
          {
            "_id": null,
            "model": "oceanstor s5500 v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1668.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1654.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.698.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.46",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.13"
          },
          {
            "_id": null,
            "model": "ipso r71.10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1079.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.74"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.338"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.71"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.598.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.89"
          },
          {
            "_id": null,
            "model": "high-density server xh321 v100r002c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1287.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.894.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.30"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "data recovery",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.0.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1061"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.906.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.954.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.737.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1284.1"
          },
          {
            "_id": null,
            "model": "ip deskphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "96x16.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.237"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.445.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.214"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.21"
          },
          {
            "_id": null,
            "model": "storeonce backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.514.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.23"
          },
          {
            "_id": null,
            "model": "prime collaboration assurance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1444.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1672.2"
          },
          {
            "_id": null,
            "model": "operation agent virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.275.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.52"
          },
          {
            "_id": null,
            "model": "aura system platform sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "websphere process server hypervisor edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.9."
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.54"
          },
          {
            "_id": null,
            "model": "oceanstor v100r001c02",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v1500"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.827.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.7"
          },
          {
            "_id": null,
            "model": "ucs central",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.320"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.124"
          },
          {
            "_id": null,
            "model": "nsx for vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "6.0.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.81"
          },
          {
            "_id": null,
            "model": "vpn gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3090"
          },
          {
            "_id": null,
            "model": "services vm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.311"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.693.0"
          },
          {
            "_id": null,
            "model": "oceanstor vtl6900 v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.736.0"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.0.4"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "6.1.1538"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1069.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1668.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.98"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1019.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.606.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.438.0"
          },
          {
            "_id": null,
            "model": "encryption switch 2498-e32",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.775.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.3"
          },
          {
            "_id": null,
            "model": "oceanstor css v100r001c05",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.120"
          },
          {
            "_id": null,
            "model": "horizon workspace",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.11"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "9.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.209"
          },
          {
            "_id": null,
            "model": "idp series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.113"
          },
          {
            "_id": null,
            "model": "phaser r14-12 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7800081.150.104.35600"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1299.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.226"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.869.0"
          },
          {
            "_id": null,
            "model": "dc v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.738.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.102"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.231"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.32"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19"
          },
          {
            "_id": null,
            "model": "edge digital media player",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "gaia r70",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.2"
          },
          {
            "_id": null,
            "model": "secureplatform r71.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.116"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.13"
          },
          {
            "_id": null,
            "model": "secureplatform ngx r65",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.98"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.578.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.121"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.54"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.63"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.29"
          },
          {
            "_id": null,
            "model": "smart zero core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.958.0"
          },
          {
            "_id": null,
            "model": "agile controller v100r001c00spc205",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.380.0"
          },
          {
            "_id": null,
            "model": "cloud single sign on",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.809.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1681.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.361.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1036.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1018"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.1"
          },
          {
            "_id": null,
            "model": "hyperdp oceanstor n8500 v200r001c91",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.701.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.4.154.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.780.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.116"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.605.0"
          },
          {
            "_id": null,
            "model": "t620 plus flexible dual core thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1051.0"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gnu",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "physical access gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.51"
          },
          {
            "_id": null,
            "model": "ipso r71.45",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "secure access link policy server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.58"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.49"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.55"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.663.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.537.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "phaser r14-12 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "6700081.140.105.00700"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1275.0"
          },
          {
            "_id": null,
            "model": "oic v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.133"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.96"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.9"
          },
          {
            "_id": null,
            "model": "network data loss prevention",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1046.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.122"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "t610 flexible thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ucs director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1062"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.934.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.11"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.928.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.490.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1020"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.469.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.9"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning fixpack for sv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1080.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.67"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "telepresence isdn link",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "espace uc v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "physical access manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "2054-e11",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.4"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "secureplatform r70.50",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.951.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.55"
          },
          {
            "_id": null,
            "model": "gaia r71",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.4"
          },
          {
            "_id": null,
            "model": "workcentre r15-03 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7775061.090.225.06200"
          },
          {
            "_id": null,
            "model": "oceanstor s2200t v100r005c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.0"
          },
          {
            "_id": null,
            "model": "netflow collection agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.130"
          },
          {
            "_id": null,
            "model": "infosphere balanced warehouse c4000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.414.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.55"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.332"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.85"
          },
          {
            "_id": null,
            "model": "unified communications domain manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.81"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.108"
          },
          {
            "_id": null,
            "model": "secure access control server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.688.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1050.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.479.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.11"
          },
          {
            "_id": null,
            "model": "oceanstor s5600 v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.960.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.838.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.394.0"
          },
          {
            "_id": null,
            "model": "network security sensor appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "oceanstor s2600 v100r001c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.718.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.46",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.503.1"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "uma-db v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.890.1"
          },
          {
            "_id": null,
            "model": "oceanstor s2200t v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "service control engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1057.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.20"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.528.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.30"
          },
          {
            "_id": null,
            "model": "rack server rh2288e v100r002c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1676.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.100"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.62"
          },
          {
            "_id": null,
            "model": "cloud identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.2491064"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.84"
          },
          {
            "_id": null,
            "model": "sal gw virtual app",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.25"
          },
          {
            "_id": null,
            "model": "security access manager for web",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.105"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1023.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.325.0"
          },
          {
            "_id": null,
            "model": "high-density server xh320 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.33"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.57"
          },
          {
            "_id": null,
            "model": "secure access core concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.46"
          },
          {
            "_id": null,
            "model": "espace vtm v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1010.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.724.0"
          },
          {
            "_id": null,
            "model": "oceanstor hdp3500e v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.335.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.431.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.10"
          },
          {
            "_id": null,
            "model": "configuration and orchestration manager com",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.47"
          },
          {
            "_id": null,
            "model": "cloud identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "3.0.195.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.498.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.51"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.612.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.406.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.938.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.515.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1294.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.36"
          },
          {
            "_id": null,
            "model": "prime infrastructure",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1.2.1"
          },
          {
            "_id": null,
            "model": "fusionaccess v100r005c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.91275"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.445.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.409.0"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.4.0.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.68"
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.775.4"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.315.0"
          },
          {
            "_id": null,
            "model": "network convergence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "60000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.741.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.27"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.170.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.588.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.75"
          },
          {
            "_id": null,
            "model": "galax8800 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1045.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.799.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.511.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.104"
          },
          {
            "_id": null,
            "model": "secureplatform r77.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1073.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.152"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.792.0"
          },
          {
            "_id": null,
            "model": "secureplatform r77.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "ipso r71.20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "storefabric c-series mds switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.9"
          },
          {
            "_id": null,
            "model": "uma v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1667.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.21"
          },
          {
            "_id": null,
            "model": "scale out network attached storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4.3.1"
          },
          {
            "_id": null,
            "model": "omm solution v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.322"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1279.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.169.1"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.272.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.97"
          },
          {
            "_id": null,
            "model": "gaia embedded ngx r65",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "associates application performance management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.411.0"
          },
          {
            "_id": null,
            "model": "oceanstor vtl6000 v100r003c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.36"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.103"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.47"
          },
          {
            "_id": null,
            "model": "elog v100r003",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "secureplatform r70",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.5"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.367.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1045"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1016"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.106"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.454.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.634.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.53"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70000"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1029.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.2"
          },
          {
            "_id": null,
            "model": "fusionstorage dsware v100r003c02spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.337.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.507.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.54"
          },
          {
            "_id": null,
            "model": "message networking sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.43"
          },
          {
            "_id": null,
            "model": "e9000 blade server ch222 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1032"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1302.0"
          },
          {
            "_id": null,
            "model": "nexus switch for nexus series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1000v70004.1.(2)"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.118"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.51"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.01"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.827.0"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.5.0.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.642.2"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.10"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.945.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.1"
          },
          {
            "_id": null,
            "model": "network performance analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system storage storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.151"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.76"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.30"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.107"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.94"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1666.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.41"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.895.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.355.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.6"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "smart zero core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "supercluster",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.21"
          },
          {
            "_id": null,
            "model": "e9000 blade server ch221 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.49"
          },
          {
            "_id": null,
            "model": "gaia r75",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "traffix sdc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.308.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1272.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.234"
          },
          {
            "_id": null,
            "model": "galax8800 v100r002c85",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.21"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7220"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.104"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.103"
          },
          {
            "_id": null,
            "model": "move antivirus agentless",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "sdn for virtual environments",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "big data appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.650.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r77",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.19"
          },
          {
            "_id": null,
            "model": "vcenter support assistant",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.8"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.338.0"
          },
          {
            "_id": null,
            "model": "vcenter server appliance update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.451.0"
          },
          {
            "_id": null,
            "model": "vsphere app ha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.135"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.59"
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1301.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.222.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.29"
          },
          {
            "_id": null,
            "model": "saas web protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.75"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.868.0"
          },
          {
            "_id": null,
            "model": "agile controller v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1304.1"
          },
          {
            "_id": null,
            "model": "webex pcnow",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.19"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.4"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "qlogic 20-port 8gb san switch module for ibm bladecenter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.10.1.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.45"
          },
          {
            "_id": null,
            "model": "security virtual server protection for vmware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "oceanstor cse v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1671.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.82"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.98"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.15"
          },
          {
            "_id": null,
            "model": "power hmc r8.1.0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1017.0"
          },
          {
            "_id": null,
            "model": "web element manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "prime network services controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.2"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.427.0"
          },
          {
            "_id": null,
            "model": "e9000 blade server ch242 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v3"
          },
          {
            "_id": null,
            "model": "ipso r70.1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.5"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1024"
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.16"
          },
          {
            "_id": null,
            "model": "traffix sdc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.43"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.276.0"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.117"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "espace u2980 v100r001c10spc102",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.307.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.112"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.933.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.121"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.642.0"
          },
          {
            "_id": null,
            "model": "netauthenticate",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.574.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.936.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "2.0.172.38"
          },
          {
            "_id": null,
            "model": "webex meetings server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.27"
          },
          {
            "_id": null,
            "model": "3722-s51",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "workcentre r14-10 spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7775061.090.224.30300"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "26.0.1410.64"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.317.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.320.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.946.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.65"
          },
          {
            "_id": null,
            "model": "ads virtual app",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.48"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.888.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.37"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.18"
          },
          {
            "_id": null,
            "model": "access registrar appliance cisco prime access registrar applianc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1307.0"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.224.0"
          },
          {
            "_id": null,
            "model": "rack server rh5885 v100r001c0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1678.1"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.97"
          },
          {
            "_id": null,
            "model": "socialminer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.704.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.149"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.60"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.24"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1035"
          },
          {
            "_id": null,
            "model": "policy assessment and compliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.288.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "ipso r76",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1291.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.68"
          },
          {
            "_id": null,
            "model": "scale out network attached storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.4.3.2"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "20500"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.43"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor 18800f v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.59"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.3"
          },
          {
            "_id": null,
            "model": "espace uc v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.60"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "29.0.1547.57"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.59"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.41"
          },
          {
            "_id": null,
            "model": "espace uc v200r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.223.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.632.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.6.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.158"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.154"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.328"
          },
          {
            "_id": null,
            "model": "operation agent virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.9"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.889.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.777.2"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb26",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "vae v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.899.0"
          },
          {
            "_id": null,
            "model": "websphere message broker",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.2"
          },
          {
            "_id": null,
            "model": "websphere process server hypervisor edition for novell suse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.39"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1029"
          },
          {
            "_id": null,
            "model": "gaia r71.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.571.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.23"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.57"
          },
          {
            "_id": null,
            "model": "messaging application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.50"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.79"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1677.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.19"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.911.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.82"
          },
          {
            "_id": null,
            "model": "esight network v200r003c10spc206",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.734.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.15"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.55"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.954.1"
          },
          {
            "_id": null,
            "model": "cloudsystem enterprise software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.4"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.46",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "gaia r70.50",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.667.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1310.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.34"
          },
          {
            "_id": null,
            "model": "t505 flexible thin client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.342"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.93"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "aura presence services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.16"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.485.0"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.678.0"
          },
          {
            "_id": null,
            "model": "server automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.00"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.16"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "virtual compute appliance software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "0"
          },
          {
            "_id": null,
            "model": "puredata system for analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.372.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.91"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.77"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.949.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.638.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.450.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.392.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.212"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2053-4340"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.302.1"
          },
          {
            "_id": null,
            "model": "websphere transformation extender",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.40"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1063"
          },
          {
            "_id": null,
            "model": "gaia embedded r75.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.710.0"
          },
          {
            "_id": null,
            "model": "sig9800 sig9800-x16 v300r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.206"
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c10cp6001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.289.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.11"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.1.4.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.96"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1685.0"
          },
          {
            "_id": null,
            "model": "vpn gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3070"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.735.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.568.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.487.0"
          },
          {
            "_id": null,
            "model": "ipso r70.50",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.302.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.129"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.124"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.9"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.590.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.113"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.827.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.23"
          },
          {
            "_id": null,
            "model": "rack server rh5885 v100r003c0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v3"
          },
          {
            "_id": null,
            "model": "gaia r71.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "system storage san04b-r 2005-r04",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.89"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.332.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.49"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.107"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.953.0"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r005c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.666.0"
          },
          {
            "_id": null,
            "model": "bash",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gnu",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1071.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1013.0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "collaboration pod on vmware vcenter server appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.41"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0.23988"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.73"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.83"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.0.275.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.340.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "57450"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.373.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.46"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.87"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.32"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.2"
          },
          {
            "_id": null,
            "model": "thinpro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1036.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.50"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.353.0"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.408.2"
          },
          {
            "_id": null,
            "model": "gaia r75.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor s6900 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.43"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.26"
          },
          {
            "_id": null,
            "model": "policy assessment and compliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.47"
          },
          {
            "_id": null,
            "model": "secureplatform r75.30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.51"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.470.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.461.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1285.1"
          },
          {
            "_id": null,
            "model": "prime infrastructure",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.446.0"
          },
          {
            "_id": null,
            "model": "secureplatform r75.47",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "move firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.88"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.5"
          },
          {
            "_id": null,
            "model": "nsmxpress appliances",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2012.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.357.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.459.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.541.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.221"
          },
          {
            "_id": null,
            "model": "espace u2980 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.65"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.64"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.31"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.18"
          },
          {
            "_id": null,
            "model": "nexus switch for nexus series 4.1 e1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1000v4000"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.333.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.779.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.90"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.57"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "1.0.154.42"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "6655"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.9"
          },
          {
            "_id": null,
            "model": "bsc6000 v900r008c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.307"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.121"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.127"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.20"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1027"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.396.0"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.157"
          },
          {
            "_id": null,
            "model": "bsc6000 v901r013c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.110"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.101"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.428.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.42"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.29"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.612.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.95"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1035.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.767.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.891.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.460.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.14"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1001.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.87"
          },
          {
            "_id": null,
            "model": "siem enterprise security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.2"
          },
          {
            "_id": null,
            "model": "vcloud networking and security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "galax8800 v100r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "secureplatform r71.50",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.466.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1053"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.74"
          },
          {
            "_id": null,
            "model": "viewplanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.8"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "5945"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.455.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.45"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.25"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1014.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.220"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.210"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.21"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.449.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.142"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.26"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.9"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.911.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.4"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.620.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.10"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.497.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.82"
          },
          {
            "_id": null,
            "model": "oceanstor s5900 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.576.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "28.0.1500.61"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1015.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.33"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.795.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "secureplatform r76",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.213"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1010.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.13"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "16.0.912.12"
          },
          {
            "_id": null,
            "model": "gaia embedded r70.40",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.148"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.99"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1682.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.437.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.751.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.636.0"
          },
          {
            "_id": null,
            "model": "secure access link gas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5300 v100r005c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.91"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.313"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.360.5"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "65.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.12"
          },
          {
            "_id": null,
            "model": "workcentre",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "57400"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.64"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1670.5"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.456.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.874.12"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.831.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "37.0.2062.65"
          },
          {
            "_id": null,
            "model": "saas email protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "high-density server dh621 v100r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "v2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.18"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.38"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "secureplatform r76",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.111"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.67"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.375.53"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.550.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1305.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.583.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.317.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.595.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1009"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0.1847.131"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.108"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "0.3.154.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "23.0.1271.17"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.94"
          },
          {
            "_id": null,
            "model": "virtual security gateway for microsoft hyper-v",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "15.0.866.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.34"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.48"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.35"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1673.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "25.0.1364.72"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.22"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "30.0.1599.101"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "workcentre spar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "7545061.121.225.06100"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.85"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.47"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.131"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.15"
          },
          {
            "_id": null,
            "model": "secureplatform r71.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.128"
          },
          {
            "_id": null,
            "model": "configuration and orchestration manager vps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.342.8"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.62"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "500-320"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.653.0"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb16",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.63"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1656.1"
          },
          {
            "_id": null,
            "model": "associates layer api management portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "computer",
            "version": "70"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "22.0.1229.92"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "17.0.963.35"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0.00"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.713.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.643.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.62"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.22"
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1057.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.7"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "8.0.552.228"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.2"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.28"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.504.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.517.44"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1312.12"
          },
          {
            "_id": null,
            "model": "ipso r71.40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "unstructured data identification and mgmt",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.767.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "24.0.1292.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1058.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "500-370"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025.129"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "12.0.742.21"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.52"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "20.0.1132.54"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.41"
          },
          {
            "_id": null,
            "model": "next generation firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.14150"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.218"
          },
          {
            "_id": null,
            "model": "oneview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.05"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.418.4"
          },
          {
            "_id": null,
            "model": "gaia r71.50",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "visual quality experience tools server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.68"
          },
          {
            "_id": null,
            "model": "espace dcm v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.359.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1084.26"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.205"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.597.83"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.78"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.565.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "7.0.536.3"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "9.0.567.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "5.0.37586"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.835.33"
          },
          {
            "_id": null,
            "model": "oceanstor cse v100r002c00lsfm01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "6.0.472.56"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "27.0.1453.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "13.0.782.238"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.656.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.696.55"
          },
          {
            "_id": null,
            "model": "ip flow manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "21.0.1180.53"
          },
          {
            "_id": null,
            "model": "b189 ip conference phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.022"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "4.1.249.1011"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "10.0.648.66"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "19.0.1033.0"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.38"
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "14.0.788.0"
          },
          {
            "_id": null,
            "model": "gaia embedded r70.30",
            "scope": null,
            "trust": 0.3,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "11.0.691.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#252743"
          },
          {
            "db": "BID",
            "id": "70166"
          },
          {
            "db": "BID",
            "id": "70152"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "HP",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "128764"
          },
          {
            "db": "PACKETSTORM",
            "id": "130336"
          },
          {
            "db": "PACKETSTORM",
            "id": "128753"
          },
          {
            "db": "PACKETSTORM",
            "id": "129069"
          },
          {
            "db": "PACKETSTORM",
            "id": "128666"
          },
          {
            "db": "PACKETSTORM",
            "id": "128762"
          },
          {
            "db": "PACKETSTORM",
            "id": "128545"
          },
          {
            "db": "PACKETSTORM",
            "id": "129617"
          },
          {
            "db": "PACKETSTORM",
            "id": "128513"
          },
          {
            "db": "PACKETSTORM",
            "id": "128509"
          }
        ],
        "trust": 1.0
      },
      "cve": "CVE-2014-7169",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2014-7169",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.1,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "IPA",
                "availabilityImpact": "Complete",
                "baseScore": 10.0,
                "confidentialityImpact": "Complete",
                "exploitabilityScore": null,
                "id": "JVNDB-2014-000126",
                "impactScore": null,
                "integrityImpact": "Complete",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 3.9,
                "id": "CVE-2014-7169",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 2.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-7169",
                "trust": 1.0,
                "value": "CRITICAL"
              },
              {
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "id": "CVE-2014-7169",
                "trust": 1.0,
                "value": "CRITICAL"
              },
              {
                "author": "IPA",
                "id": "JVNDB-2014-000126",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "VULMON",
                "id": "CVE-2014-7169",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-7169"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271. QNAP Systems, Inc. Provided by QTS teeth, Turbo NAS for OS is. QTS for, GNU Bash Vulnerability (JVNVU#97219505) caused by OS Command injection vulnerability (CWE-78) Exists. This vulnerability information is based on the Information Security Early Warning Partnership. IPA Report to JPCERT/CC Coordinated with the developer. Reporter : University of Electro-Communications Wakisaka Yuki MrAny application permission OS The command may be executed. \nAn attacker can exploit this issue to execute arbitrary code within the  context of the affected application. Failed exploit  attempts will  result in a denial-of-service  condition. \nGNU Bash 3.2 and later are vulnerable; prior versions may also be affected. \n\nThis vulnerability allows users that have been granted access to a shell\nscript to escalate privilege and execute unrestricted commands at the same\nsecurity level as the Bash script. Customers who\nneed to upgrade the firmware of their Superdome X or HP Converged System 900\nfor SAP HANA should contact HP Technical Support to obtain the firmware or\nplan to schedule an onsite visit with an HP Services field service\nprofessional. \n\nNOTE: HP strongly recommends implementing the following security best\npractices to help reduce both known and future security vulnerability risks:\n\nIsolate the HP Superdome X or HP Converged System 900 for SAP HANA\u0027s\nmanagement network by keeping it separate from the data or production\nnetwork, and not connecting it directly to the Internet without additional\naccess authentication. \nPatch and maintain Lightweight Directory Access Protocol (LDAP) and web\nservers. \nUse virus scanners, intrusion detection/prevention systems (IDS/IPS), and\nvulnerability scanners regularly. \n\nAdditionally two out-of-bounds array accesses in the bash parser are\nfixed which were revealed in Red Hat\u0027s internal analysis for these\nissues and also independently reported by Todd Sabin. \n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 4.2+dfsg-0.1+deb7u3. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04558068\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04558068\nVersion: 1\n\nHPSBMU03246 rev.1 - HP Insight Control for Linux Central Management Server\nPre-boot Execution Environment running Bash Shell, Multiple Vulnerabilities\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2015-02-02\nLast Updated: 2015-02-02\n\nPotential Security Impact: Multiple vulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP Insight\nControl for Linux Central Management Server Pre-boot Execution Environment\nthat could be exploited remotely resulting in Denial of Service (DoS),\ndisclosure of information, and other vulnerabilities. \n\nReferences:\n\nCVE-2014-6271\nCVE-2014-6277\nCVE-2014-6278\nCVE-2014-7169\nCVE-2014-7186\nCVE-2014-7187\nCVE-2014-7196\nSSRT101742\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Insight Control for Linux Central Management Server Pre-boot Execution\nEnvironment running Bash Shell\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2014-6271    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2014-6277    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2014-6278    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2014-7169    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2014-7186    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2014-7187    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\nCVE-2014-7196    (AV:N/AC:L/Au:N/C:C/I:C/A:C)       10.0\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following instructions to resolve these vulnerabilities. \n\nFollow these steps to update the HP Insight Control for Linux Central\nManagement Server Pre-boot Execution Environment:\n\nNOTE: The following procedure updates the bash shell on the Linux Pre-boot\nExecution Environment. Please update the Bash shell version on the HP Insight\nControl for Linux Central Management Server also. On the Production RHEL 6.2 OS:\n\na. Prepare temporary directory for Bash update software:\n\n# mkdir -p $HOME/tmp/bash\n# cd $HOME/tmp/bash\n# pwd\n\u003chome directory\u003e/tmp/bash\n\nb. \n\nc. Extract the Bash update software package. \n\n# rpm2cpio bash-4.1.2-15.el6_4.2.i686.rpm| cpio -idmv\n\nd. Verify the version of the Bash update software:\n\n# ./bin/bash --version\nGNU bash, version 4.1.2(1)-release (i686-redhat-linux-gnu)\n\ne. Verify version dependencies:\n\n# ldd ./bin/bash\n\nlinux-gate.so.1 =\u003e (0x008a7000)\nlibtinfo.so.5 =\u003e /lib/libtinfo.so.5 (0x00459000)\nlibdl.so.2 =\u003e /lib/libdl.so.2 (0x002c0000)\nlibc.so.6 =\u003e /lib/libc.so.6 (0x0012e000)\n/lib/ld-linux.so.2 (0x00108000)\n\nf. Create archive file from \u0027/lib\u0027 to copy and install on the Insight Control\nfor Linux Central Management Server Pre-boot Execution Environment system:\n\n# mkdir $HOME/tmp/lib\n# cd /lib\n# cp * $HOME/tmp/lib\n# cd $HOME/tmp\n# pwd\n\u003chome directory\u003e/tmp\n# tar cvf bash_lib.tar *\n\n2. Download the new archive file \u0027$HOME/tmp/bash_lib.tar\u0027 from the Production\nRHEL 6.2 OS system to the Insight Control for Linux Central Management Server\nPre-boot Execution Environment system. On the HP Insight Control for Linux Central Managment Server Pre-boot\nExecution Environment system:\n\na. Create a temporary folder for the toolkit and copy the toolkit there :\n\n# mkdir -p $HOME/tmp/temp-toolkit\n# cp /usr/share/systemimager/boot/i386/standard/toolkit.tar.gz\n$HOME/tmp/temp-toolkit\n\nb. Extract the file \u0027toolkit.tar.gz\u0027 into the temporary folder:\n\n# cd $HOME/tmp/temp-toolkit\n# tar zxvf toolkit.tar.gz\n# mv $HOME/tmp/temp-toolkit/toolkit.tar.gz /tmp\n\nc. Verify the version of the toolkit Bash:\n\n# $HOME/tmp/temp-toolkit/bin/bash --version\nGNU bash, version 3.2.0(1)-release (i386-pc-linux-gnu) Copyright (C) 2005\nFree Software Foundation, Inc. \n\nd. Verify dependencies versions:\n\n# ldd $HOME/tmp/temp-toolkit/bin/bash\n\nlinux-gate.so.1 =\u003e (0xffffe000)\nlibtermcap.so.2 =\u003e /lib/libtermcap.so.2 (0xf7f8c000)\nlibdl.so.2 =\u003e /lib/libdl.so.2 (0x008bf000)\nlibc.so.6 =\u003e /lib/libc.so.6 (0x00777000)\n/lib/ld-linux.so.2 (0x00755000)\n\ne. Extract the archive \u0027bash_lib.tar\u0027 to directory \u0027$HOME/tmp/bash_lib\u0027 . \nThen copy the bash binary and the library files to their respective\nlocations:\n\n# tar xvf $HOME/tmp/bash_lib\n# cp $HOME/tmp/bash_lib/bash/bash $HOME/tmp/temp-toolkit/bin\n# cp $HOME/tmp/bash_lib/lib/* $HOME/tmp/temp-toolkit/lib\n\nf. Create the updated toolkit gzipped archive file and place in\n/usr/share/systemimager/boot/i386/standard\n\n# tar czvf toolkit.tar.gz *\n# cp toolkit.tar.gz /usr/share/systemimager/boot/i386/standard\n\nHISTORY\nVersion:1 (rev.1) - 2 February 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\n  HP Product\n   Firmware Version\n\n  HP StoreEver ESL G3 Tape Libraries with MCB version 2\n   680H_GS40701\n\n  HP StoreEver ESL G3 Tape Libraries with MCB version 1\n   656H_GS10801\n\n  The firmware is customer installable and is available in the Drivers,\nSoftware \u0026 Firmware section at the following location:\n\n    http://www.hp.com/support/eslg3\n\n  Notes:\n\n    - Updating the library firmware requires a reboot of the library. \n\nMitigation Instructions\n\n  HP recommends the following mitigation steps to reduce the risk of this\nvulnerability for HP StoreEver ESL G3 Tape Library. The shell is not accessible via the standard\ncalibration or remote management interfaces. ============================================================================\nUbuntu Security Notice USN-2363-2\nSeptember 26, 2014\n\nbash vulnerability\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 14.04 LTS\n\nSummary:\n\nBash allowed bypassing environment restrictions in certain environments. Due to a build issue, the patch\nfor CVE-2014-7169 didn\u0027t get properly applied in the Ubuntu 14.04 LTS\npackage. This update fixes the problem. \n\nWe apologize for the inconvenience. (CVE-2014-7169)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 14.04 LTS:\n  bash                            4.3-7ubuntu1.3\n\nIn general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: bash security update\nAdvisory ID:       RHSA-2014:1311-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2014-1311.html\nIssue date:        2014-09-26\nCVE Names:         CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 \n=====================================================================\n\n1. Summary:\n\nUpdated bash packages that fix one security issue are now available for Red\nHat Enterprise Linux 4 Extended Life Cycle Support, Red Hat Enterprise\nLinux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Extended Update Support,\nRed Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat\nEnterprise Linux 6.4 Extended Update Support. \n\nRed Hat Product Security has rated this update as having Important security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux AS (v. 4 ELS) - i386, ia64, x86_64\nRed Hat Enterprise Linux AUS (v. 6.2 server) - x86_64\nRed Hat Enterprise Linux Compute Node Optional EUS (v. 6.4) - x86_64\nRed Hat Enterprise Linux ES (v. 4 ELS) - i386, x86_64\nRed Hat Enterprise Linux EUS (v. 5.9 server) - i386, ia64, ppc, s390x, x86_64\nRed Hat Enterprise Linux HPC Node EUS (v. 6.4) - x86_64\nRed Hat Enterprise Linux LL (v. 5.6 server) - i386, ia64, x86_64\nRed Hat Enterprise Linux Server EUS (v. 6.4) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional AUS (v. 6.2) - x86_64\nRed Hat Enterprise Linux Server Optional EUS (v. 6.4) - i386, ppc64, s390x, x86_64\n\n3. Description:\n\nThe GNU Bourne Again shell (Bash) is a shell and command language\ninterpreter compatible with the Bourne shell (sh). Bash is the default\nshell for Red Hat Enterprise Linux. \n\nIt was found that the fix for CVE-2014-6271 was incomplete, and Bash still\nallowed certain characters to be injected into other environments via\nspecially crafted environment variables. An attacker could potentially use\nthis flaw to override or bypass environment restrictions to execute shell\ncommands. Certain services and applications allow remote unauthenticated\nattackers to provide environment variables, allowing them to exploit this\nissue. (CVE-2014-7169)\n\nApplications which directly create Bash functions as environment variables\nneed to be made aware of the changes to the way names are handled by this\nupdate. For more information see the Knowledgebase article at\nhttps://access.redhat.com/articles/1200223\n\nNote: Docker users are advised to use \"yum update\" within their containers,\nand to commit the resulting changes. \n\nFor additional information on CVE-2014-6271 and CVE-2014-7169, refer to the\naforementioned Knowledgebase article. \n\nAll bash users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258\n\n5. Package List:\n\nRed Hat Enterprise Linux AS (v. 4 ELS):\n\nSource:\nbash-3.0-27.el4.4.src.rpm\n\ni386:\nbash-3.0-27.el4.4.i386.rpm\nbash-debuginfo-3.0-27.el4.4.i386.rpm\n\nia64:\nbash-3.0-27.el4.4.i386.rpm\nbash-3.0-27.el4.4.ia64.rpm\nbash-debuginfo-3.0-27.el4.4.i386.rpm\nbash-debuginfo-3.0-27.el4.4.ia64.rpm\n\nx86_64:\nbash-3.0-27.el4.4.x86_64.rpm\nbash-debuginfo-3.0-27.el4.4.x86_64.rpm\n\nRed Hat Enterprise Linux ES (v. 4 ELS):\n\nSource:\nbash-3.0-27.el4.4.src.rpm\n\ni386:\nbash-3.0-27.el4.4.i386.rpm\nbash-debuginfo-3.0-27.el4.4.i386.rpm\n\nx86_64:\nbash-3.0-27.el4.4.x86_64.rpm\nbash-debuginfo-3.0-27.el4.4.x86_64.rpm\n\nRed Hat Enterprise Linux LL (v. 5.6 server):\n\nSource:\nbash-3.2-24.el5_6.2.src.rpm\n\ni386:\nbash-3.2-24.el5_6.2.i386.rpm\nbash-debuginfo-3.2-24.el5_6.2.i386.rpm\n\nia64:\nbash-3.2-24.el5_6.2.i386.rpm\nbash-3.2-24.el5_6.2.ia64.rpm\nbash-debuginfo-3.2-24.el5_6.2.i386.rpm\nbash-debuginfo-3.2-24.el5_6.2.ia64.rpm\n\nx86_64:\nbash-3.2-24.el5_6.2.x86_64.rpm\nbash-debuginfo-3.2-24.el5_6.2.x86_64.rpm\n\nRed Hat Enterprise Linux EUS (v. 5.9 server):\n\nSource:\nbash-3.2-32.el5_9.3.src.rpm\n\ni386:\nbash-3.2-32.el5_9.3.i386.rpm\nbash-debuginfo-3.2-32.el5_9.3.i386.rpm\n\nia64:\nbash-3.2-32.el5_9.3.i386.rpm\nbash-3.2-32.el5_9.3.ia64.rpm\nbash-debuginfo-3.2-32.el5_9.3.i386.rpm\nbash-debuginfo-3.2-32.el5_9.3.ia64.rpm\n\nppc:\nbash-3.2-32.el5_9.3.ppc.rpm\nbash-debuginfo-3.2-32.el5_9.3.ppc.rpm\n\ns390x:\nbash-3.2-32.el5_9.3.s390x.rpm\nbash-debuginfo-3.2-32.el5_9.3.s390x.rpm\n\nx86_64:\nbash-3.2-32.el5_9.3.x86_64.rpm\nbash-debuginfo-3.2-32.el5_9.3.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node EUS (v. 6.4):\n\nSource:\nbash-4.1.2-15.el6_4.2.src.rpm\n\nx86_64:\nbash-4.1.2-15.el6_4.2.x86_64.rpm\nbash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm\n\nRed Hat Enterprise Linux Compute Node Optional EUS (v. 6.4):\n\nSource:\nbash-4.1.2-15.el6_4.2.src.rpm\n\nx86_64:\nbash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm\nbash-doc-4.1.2-15.el6_4.2.x86_64.rpm\n\nRed Hat Enterprise Linux AUS (v. 6.2 server):\n\nSource:\nbash-4.1.2-9.el6_2.2.src.rpm\n\nx86_64:\nbash-4.1.2-9.el6_2.2.x86_64.rpm\nbash-debuginfo-4.1.2-9.el6_2.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server EUS (v. 6.4):\n\nSource:\nbash-4.1.2-15.el6_4.2.src.rpm\n\ni386:\nbash-4.1.2-15.el6_4.2.i686.rpm\nbash-debuginfo-4.1.2-15.el6_4.2.i686.rpm\n\nppc64:\nbash-4.1.2-15.el6_4.2.ppc64.rpm\nbash-debuginfo-4.1.2-15.el6_4.2.ppc64.rpm\n\ns390x:\nbash-4.1.2-15.el6_4.2.s390x.rpm\nbash-debuginfo-4.1.2-15.el6_4.2.s390x.rpm\n\nx86_64:\nbash-4.1.2-15.el6_4.2.x86_64.rpm\nbash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional AUS (v. 6.2):\n\nSource:\nbash-4.1.2-9.el6_2.2.src.rpm\n\nx86_64:\nbash-debuginfo-4.1.2-9.el6_2.2.x86_64.rpm\nbash-doc-4.1.2-9.el6_2.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional EUS (v. 6.4):\n\nSource:\nbash-4.1.2-15.el6_4.2.src.rpm\n\ni386:\nbash-debuginfo-4.1.2-15.el6_4.2.i686.rpm\nbash-doc-4.1.2-15.el6_4.2.i686.rpm\n\nppc64:\nbash-debuginfo-4.1.2-15.el6_4.2.ppc64.rpm\nbash-doc-4.1.2-15.el6_4.2.ppc64.rpm\n\ns390x:\nbash-debuginfo-4.1.2-15.el6_4.2.s390x.rpm\nbash-doc-4.1.2-15.el6_4.2.s390x.rpm\n\nx86_64:\nbash-debuginfo-4.1.2-15.el6_4.2.x86_64.rpm\nbash-doc-4.1.2-15.el6_4.2.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2014-7169.html\nhttps://www.redhat.com/security/data/cve/CVE-2014-7186.html\nhttps://www.redhat.com/security/data/cve/CVE-2014-7187.html\nhttps://access.redhat.com/security/updates/classification/#important\nhttps://access.redhat.com/articles/1200223\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e.  More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2014 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFUJau9XlSAg2UNWIIRAhKkAKC931kAxA4S4exwT4uGhDr7uDFIKQCglKKS\nN0AJiOto/RXwBqHtbfr1wkM=\n=SeAK\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nHP Vertica AMI\u0027s and Virtual Machines prior to v7.1.1-0. \n\nHP has released the following updates to resolve this vulnerability for HP\nVertica products. \n\nUpdate to the latest VM image available at: https://my.vertica.com\n\nFor customers using the AMI version HP Vertica Analytics platform, please\ninstall the latest image available at Amazon. \nUnder Step2: your ITRC operating systems\n  - verify your operating system selections are checked and save. \n\nTo update an existing subscription: http://h30046.www3.hp.com/subSignIn.php\nLog in on the web page: Subscriber\u0027s choice for Business: sign-in. \nOn the web page: Subscriber\u0027s Choice: your profile summary - use Edit Profile\nto update appropriate sections. HP is continually reviewing and enhancing the\nsecurity features of software products to provide customers with current\nsecure solutions. \n\n\"HP is broadly distributing this Security Bulletin in order to bring to the\nattention of users of the affected HP products the important security\ninformation contained in this Bulletin. HP recommends that all users\ndetermine the applicability of this information to their individual\nsituations and take appropriate action. HP does not warrant that this\ninformation is necessarily accurate or complete for all user situations and,\nconsequently, HP will not be responsible for any damages resulting from\nuser\u0027s use or disregard of the information provided in this Bulletin. To the\nextent permitted by law, HP disclaims all warranties, either express or\nimplied, including the warranties of merchantability and fitness for a\nparticular purpose, title and non-infringement.\"\n\nCopyright 2014 Hewlett-Packard Development Company, L.P. The unit provides Calibration Software\nrunning on embedded Linux, which includes a Bash Shell. The software is used\nfor service purposes only. \n\n    NOTE: The vCAS product is vulnerable only if DHCP is enabled. \n\nNOTE: HP recommends to not power-down or disconnect the vCAS until the update\nis available. \n\nMITIGATION INFORMATION\n\nA Shellshock attack requires the definition of an environment variable\nintroduced into Bash. The vCAS has three attack vectors: SSH, the lighttpd\nweb server, and the DHCP client. \n\n  - The exploit does not elevate privileges. \n\nThe DHCP client uses Bash scripts and is vulnerable to Shellshock. The DHCP\nexploit can be mitigated by ensuring that DHCP is disabled on the vCAS. \n\n  Note: HP strongly discourages the use of DHCP on the vCAS. \n\nThe web UI forces the vCAS user to assign a static IP address and change the\nhp-admin password. A vCAS user must manually configure DHCP for use on the\nvCAS. \n\nA vCAS user can verify that DHCP is disabled by inspecting the file\n\"/etc/network/interfaces\" and ensuring that the \"iface\" line for device\n\"eth0\" is set for a static IP",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252743"
          },
          {
            "db": "BID",
            "id": "70152"
          },
          {
            "db": "BID",
            "id": "70166"
          },
          {
            "db": "PACKETSTORM",
            "id": "128764"
          },
          {
            "db": "PACKETSTORM",
            "id": "128431"
          },
          {
            "db": "PACKETSTORM",
            "id": "130336"
          },
          {
            "db": "PACKETSTORM",
            "id": "128753"
          },
          {
            "db": "PACKETSTORM",
            "id": "129069"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-7169"
          },
          {
            "db": "PACKETSTORM",
            "id": "128762"
          },
          {
            "db": "PACKETSTORM",
            "id": "128545"
          },
          {
            "db": "PACKETSTORM",
            "id": "128437"
          },
          {
            "db": "PACKETSTORM",
            "id": "128456"
          },
          {
            "db": "PACKETSTORM",
            "id": "129617"
          },
          {
            "db": "PACKETSTORM",
            "id": "128513"
          },
          {
            "db": "PACKETSTORM",
            "id": "128509"
          },
          {
            "db": "PACKETSTORM",
            "id": "128666"
          }
        ],
        "trust": 4.14
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=36933",
            "trust": 1.5,
            "type": "exploit"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-7169"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-7169",
            "trust": 4.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#252743",
            "trust": 3.3
          },
          {
            "db": "JVN",
            "id": "JVN55667175",
            "trust": 1.9
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126",
            "trust": 1.9
          },
          {
            "db": "MCAFEE",
            "id": "SB10085",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10648",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "61618",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61641",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61622",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61603",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60055",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61287",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61654",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61188",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61313",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61700",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61552",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61780",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "58200",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61550",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61565",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61619",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61479",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61312",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60193",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61129",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61703",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60433",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61128",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61873",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "62228",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60063",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61816",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61711",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61633",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59737",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60034",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61643",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60947",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61485",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61676",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61503",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60044",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "62343",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61626",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60325",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61291",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59272",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61328",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61283",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61855",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61442",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "60024",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61715",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61471",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61857",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "61065",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59907",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "62312",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA14-268A",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2014/09/24/32",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128567",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128517",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "34879",
            "trust": 1.0
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-14-269-01A",
            "trust": 0.9
          },
          {
            "db": "JVN",
            "id": "JVNVU97219505",
            "trust": 0.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97220341",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004431",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004433",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004476",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004399",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004410",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004432",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-15-344-01",
            "trust": 0.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10661",
            "trust": 0.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-14-269-01",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "70166",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "70152",
            "trust": 0.3
          },
          {
            "db": "EXPLOITDB",
            "id": "34879",
            "trust": 0.1
          },
          {
            "db": "EXPLOITDB",
            "id": "36933",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-7169",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128764",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128431",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "130336",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128753",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129069",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128666",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128762",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128545",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128437",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128456",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129617",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128513",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128509",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#252743"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-7169"
          },
          {
            "db": "BID",
            "id": "70166"
          },
          {
            "db": "BID",
            "id": "70152"
          },
          {
            "db": "PACKETSTORM",
            "id": "128764"
          },
          {
            "db": "PACKETSTORM",
            "id": "128431"
          },
          {
            "db": "PACKETSTORM",
            "id": "130336"
          },
          {
            "db": "PACKETSTORM",
            "id": "128753"
          },
          {
            "db": "PACKETSTORM",
            "id": "129069"
          },
          {
            "db": "PACKETSTORM",
            "id": "128666"
          },
          {
            "db": "PACKETSTORM",
            "id": "128762"
          },
          {
            "db": "PACKETSTORM",
            "id": "128545"
          },
          {
            "db": "PACKETSTORM",
            "id": "128437"
          },
          {
            "db": "PACKETSTORM",
            "id": "128456"
          },
          {
            "db": "PACKETSTORM",
            "id": "129617"
          },
          {
            "db": "PACKETSTORM",
            "id": "128513"
          },
          {
            "db": "PACKETSTORM",
            "id": "128509"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          }
        ]
      },
      "id": "VAR-201409-1155",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.4173092457142856
      },
      "last_update_date": "2026-04-10T23:30:28.561000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Server/Client Products \u00a0bash Vulnerability (CVE-2014-6271,CVE-2014-7169 other ) About the impact of",
            "trust": 0.8,
            "url": "http://www.qnap.com/i/en/support/con_show.php?cid=61"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2014/09/27/oracle_no_shellshock_patches_yet/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2014/09/26/ico_shellshock_warning/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2014/09/25/shellshock_bash_worm_type_fears/"
          },
          {
            "title": "Ubuntu Security Notice: bash vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2363-2"
          },
          {
            "title": "Ubuntu Security Notice: bash vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2363-1"
          },
          {
            "title": "Debian CVElist Bug Report Logs: bash: CVE-2014-7169: Incomplete fix for CVE-2014-6271",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=7a56c10ff83e62f236b0dc330aab6c31"
          },
          {
            "title": "Debian Security Advisories: DSA-3035-1 bash -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=f4f02191845c862da8b42c8e3db24b63"
          },
          {
            "title": "Red Hat: CVE-2014-7169",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2014-7169"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2014-419",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-419"
          },
          {
            "title": "VMware Security Advisories: VMware product updates address critical Bash security vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=vmware_security_advisories\u0026qid=86cb6b3955e100fdc9667a7ca916c772"
          },
          {
            "title": "HP: HPSBHF03119 rev.3 - HP DreamColor Professional Display running Bash Shell, Remote Code Execution",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBHF03119"
          },
          {
            "title": "Symantec Security Advisories: SA82 : GNU Bash Shellshock Command Injection Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=2b57ceaadfde2a8b03482273e1fd21ea"
          },
          {
            "title": "Citrix Security Bulletins: Citrix XenServer Shellshock Security Update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=64ae0aae8269062686789e3a3fa1d2bf"
          },
          {
            "title": "Tenable Security Advisories: [R7] Tenable Appliance Affected by GNU bash \u0027Shellshock\u0027 Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2014-07"
          },
          {
            "title": "Citrix Security Bulletins: Citrix Security Advisory for GNU Bash Shellshock Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=73443a6db89dc66fc6bcb49f85bfd1ab"
          },
          {
            "title": "Splunk Security Announcements: Splunk response to \"shellshock\" vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=splunk_security_announcements\u0026qid=995d0135ab7f45978bdbc53bcd6ffc14"
          },
          {
            "title": "cookbook_shellshock",
            "trust": 0.1,
            "url": "https://github.com/ChefRycar/cookbook_shellshock "
          },
          {
            "title": "patchme",
            "trust": 0.1,
            "url": "https://github.com/jackbezalel/patchme "
          },
          {
            "title": "hackernews-headlines",
            "trust": 0.1,
            "url": "https://github.com/bodazhao/hackernews-headlines "
          },
          {
            "title": "hacker-news-headlines",
            "trust": 0.1,
            "url": "https://github.com/bodazhao/hacker-news-headlines "
          },
          {
            "title": "totalshares",
            "trust": 0.1,
            "url": "https://github.com/Prashant-kumar/totalshares "
          },
          {
            "title": "mysecurity-cookbook",
            "trust": 0.1,
            "url": "https://github.com/alexpop/mysecurity-cookbook "
          },
          {
            "title": "Shell-Shock-Update",
            "trust": 0.1,
            "url": "https://github.com/UMDTERPS/Shell-Shock-Update "
          },
          {
            "title": "bash-cve-2014-7169-cookbook",
            "trust": 0.1,
            "url": "https://github.com/gina-alaska/bash-cve-2014-7169-cookbook "
          },
          {
            "title": "bash-vulnerability",
            "trust": 0.1,
            "url": "https://github.com/bacarrdy/bash-vulnerability "
          },
          {
            "title": "poc-development",
            "trust": 0.1,
            "url": "https://github.com/h0n3yb/poc-development "
          },
          {
            "title": "puppet-shellshock",
            "trust": 0.1,
            "url": "https://github.com/renanvicente/puppet-shellshock "
          },
          {
            "title": "shellshock_salt_grain",
            "trust": 0.1,
            "url": "https://github.com/jcollie/shellshock_salt_grain "
          },
          {
            "title": "bash-4.2-patched",
            "trust": 0.1,
            "url": "https://github.com/ricedu/bash-4.2-patched "
          },
          {
            "title": "scripts",
            "trust": 0.1,
            "url": "https://github.com/omretterry/scripts "
          },
          {
            "title": "macosx-bash-92-shellshock-patched",
            "trust": 0.1,
            "url": "https://github.com/ido/macosx-bash-92-shellshock-patched "
          },
          {
            "title": "bash-shellshock",
            "trust": 0.1,
            "url": "https://github.com/dlitz/bash-shellshock "
          },
          {
            "title": "Shellshock-Bash-Remote-Code-Execution-Vulnerability-and-Exploitation",
            "trust": 0.1,
            "url": "https://github.com/pbr94/Shellshock-Bash-Remote-Code-Execution-Vulnerability-and-Exploitation "
          },
          {
            "title": "smtp-shellshock",
            "trust": 0.1,
            "url": "https://github.com/BlisterGravy/smtp-shellshock "
          },
          {
            "title": "patch-bash-shellshock",
            "trust": 0.1,
            "url": "https://github.com/jdauphant/patch-bash-shellshock "
          },
          {
            "title": "exploit-CVE-2014-6271",
            "trust": 0.1,
            "url": "https://github.com/opsxcq/exploit-CVE-2014-6271 "
          },
          {
            "title": "Pentest-In-Docker",
            "trust": 0.1,
            "url": "https://github.com/Swordfish-Security/Pentest-In-Docker "
          },
          {
            "title": "dokku-alt",
            "trust": 0.1,
            "url": "https://github.com/dokku-alt/dokku-alt "
          },
          {
            "title": "linux-pentest",
            "trust": 0.1,
            "url": "https://github.com/ankh2054/linux-pentest "
          },
          {
            "title": "Exploit-Shellshock",
            "trust": 0.1,
            "url": "https://github.com/mrigank-9594/Exploit-Shellshock "
          },
          {
            "title": "w-test",
            "trust": 0.1,
            "url": "https://github.com/inspirion87/w-test "
          },
          {
            "title": "Xpl-SHELLSHOCK-Ch3ck",
            "trust": 0.1,
            "url": "https://github.com/googleinurl/Xpl-SHELLSHOCK-Ch3ck "
          },
          {
            "title": "bashcheck",
            "trust": 0.1,
            "url": "https://github.com/hannob/bashcheck "
          },
          {
            "title": "shocktrooper",
            "trust": 0.1,
            "url": "https://github.com/EvanK/shocktrooper "
          },
          {
            "title": "ShellShockHunter",
            "trust": 0.1,
            "url": "https://github.com/MrCl0wnLab/ShellShockHunter "
          },
          {
            "title": "shellshockFixOSX",
            "trust": 0.1,
            "url": "https://github.com/opragel/shellshockFixOSX "
          },
          {
            "title": "shellshocker-pocs",
            "trust": 0.1,
            "url": "https://github.com/mubix/shellshocker-pocs "
          },
          {
            "title": "Boot2root-CTFs-Writeups",
            "trust": 0.1,
            "url": "https://github.com/Jean-Francois-C/Boot2root-CTFs "
          },
          {
            "title": "Boot2root-CTFs-Writeups",
            "trust": 0.1,
            "url": "https://github.com/Jean-Francois-C/Boot2root-CTFs-Writeups "
          },
          {
            "title": "Threatpost",
            "trust": 0.1,
            "url": "https://threatpost.com/researcher-takes-wraps-off-two-undisclosed-shellshock-vulnerabilities-in-bash/108674/"
          },
          {
            "title": "Threatpost",
            "trust": 0.1,
            "url": "https://threatpost.com/vmware-begins-to-patch-bash-issues-across-product-line/108632/"
          },
          {
            "title": "Threatpost",
            "trust": 0.1,
            "url": "https://threatpost.com/bash-exploit-reported-first-round-of-patches-incomplete/108550/"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-7169"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-78",
            "trust": 1.0
          },
          {
            "problemtype": "OS Command injection (CWE-78) [IPA evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.5,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140926-bash"
          },
          {
            "trust": 2.5,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10085"
          },
          {
            "trust": 2.0,
            "url": "https://access.redhat.com/articles/1200223"
          },
          {
            "trust": 2.0,
            "url": "http://www.kb.cert.org/vuls/id/252743"
          },
          {
            "trust": 1.9,
            "url": "http://lcamtuf.blogspot.com/2014/09/quick-notes-about-bash-bug-its-impact.html"
          },
          {
            "trust": 1.9,
            "url": "http://support.apple.com/kb/ht6495"
          },
          {
            "trust": 1.9,
            "url": "https://kb.bluecoat.com/index?page=content\u0026id=sa82"
          },
          {
            "trust": 1.9,
            "url": "https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15629.html"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685749"
          },
          {
            "trust": 1.7,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10648"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021272"
          },
          {
            "trust": 1.7,
            "url": "http://www.vmware.com/security/advisories/vmsa-2014-0010.html"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685914"
          },
          {
            "trust": 1.7,
            "url": "http://www.oracle.com/technetwork/topics/security/bashcve-2014-7169-2317675.html"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004898"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004897"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004915"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685604"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686131"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021279"
          },
          {
            "trust": 1.7,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5096315"
          },
          {
            "trust": 1.7,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686246"
          },
          {
            "trust": 1.6,
            "url": "https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/"
          },
          {
            "trust": 1.6,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1311.html"
          },
          {
            "trust": 1.4,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1306.html"
          },
          {
            "trust": 1.4,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1312.html"
          },
          {
            "trust": 1.4,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00044.html"
          },
          {
            "trust": 1.4,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686084"
          },
          {
            "trust": 1.4,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687079"
          },
          {
            "trust": 1.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-7169"
          },
          {
            "trust": 1.2,
            "url": "http://www.ubuntu.com/usn/usn-2363-1"
          },
          {
            "trust": 1.2,
            "url": "http://www.ubuntu.com/usn/usn-2363-2"
          },
          {
            "trust": 1.1,
            "url": "http://www.fortiguard.com/advisory/fg-ir-14-030/"
          },
          {
            "trust": 1.1,
            "url": "http://twitter.com/taviso/statuses/514887394294652929"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2014/09/24/32"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/ncas/alerts/ta14-268a"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2014/dsa-3035"
          },
          {
            "trust": 1.1,
            "url": "https://www.suse.com/support/shellshock/"
          },
          {
            "trust": 1.1,
            "url": "http://support.novell.com/security/cve/cve-2014-7169.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61626"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59737"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61641"
          },
          {
            "trust": 1.1,
            "url": "http://linux.oracle.com/errata/elsa-2014-3075.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61700"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61618"
          },
          {
            "trust": 1.1,
            "url": "http://linux.oracle.com/errata/elsa-2014-1306.html"
          },
          {
            "trust": 1.1,
            "url": "http://linux.oracle.com/errata/elsa-2014-3077.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61676"
          },
          {
            "trust": 1.1,
            "url": "http://www.novell.com/support/kb/doc.php?id=7015701"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61622"
          },
          {
            "trust": 1.1,
            "url": "http://linux.oracle.com/errata/elsa-2014-3078.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61479"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61619"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00042.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141216207813411\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00041.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00038.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141216668515282\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00048.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61485"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59907"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61654"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/128567/ca-technologies-gnu-bash-shellshock.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141235957116749\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61565"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61643"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61633"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61552"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141319209015420\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61283"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61603"
          },
          {
            "trust": 1.1,
            "url": "http://www.novell.com/support/kb/doc.php?id=7015721"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61503"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61711"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61715"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61703"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2014/oct/0"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/128517/vmware-security-advisory-2014-0010.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00004.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60947"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht6535"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61188"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141345648114150\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141330425327438\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141330468527613\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60034"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61816"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685733"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61442"
          },
          {
            "trust": 1.1,
            "url": "https://support.citrix.com/article/ctx200223"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60055"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61780"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60193"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61855"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60325"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61312"
          },
          {
            "trust": 1.1,
            "url": "https://support.citrix.com/article/ctx200217"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004879"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61128"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61313"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61287"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61129"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686479"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685541"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61471"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61328"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/58200"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61857"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61065"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61550"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686494"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60044"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686445"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021361"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60024"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60063"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61291"
          },
          {
            "trust": 1.1,
            "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventsubmit_dogoviewsolutiondetails=\u0026solutionid=sk102673\u0026src=securityalerts"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/60433"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383244821813\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-updates/2014-10/msg00025.html"
          },
          {
            "trust": 1.1,
            "url": "http://jvn.jp/en/jp/jvn55667175/index.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383138121313\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.qnap.com/i/en/support/con_show.php?cid=61"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383026420882\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-updates/2014-10/msg00023.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383196021590\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383353622268\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383304022067\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141450491804793\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383081521087\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://jvndb.jvn.jp/jvndb/jvndb-2014-000126"
          },
          {
            "trust": 1.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686447"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1354.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383465822787\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/61873"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141577241923505\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141576728022234\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141577297623641\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141577137423233\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141585637922673\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141694386919794\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/62343"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/62312"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142358026505815\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142358078406056\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142113462216480\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141879528318582\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142118135300698\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142721162228379\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=142805027510172\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://advisories.mageia.org/mgasa-2014-0393.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:164"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/62228"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/node/1200223"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59272"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/34879/"
          },
          {
            "trust": 1.1,
            "url": "https://support.hpe.com/hpsc/doc/public/display?doclocale=en_us\u0026docid=emr_na-c04518183"
          },
          {
            "trust": 1.1,
            "url": "https://support.hpe.com/hpsc/doc/public/display?doclocale=en_us\u0026docid=emr_na-c04497075"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/533593/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "https://help.ecostruxureit.com/display/public/uadco8x/struxureware+data+center+operation+software+vulnerability+fixes"
          },
          {
            "trust": 1.1,
            "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1008-security-advisory-0006"
          },
          {
            "trust": 1.0,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 1.0,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6271"
          },
          {
            "trust": 1.0,
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=cve-2014-7169"
          },
          {
            "trust": 0.9,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.9,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.8,
            "url": "http://seclists.org/oss-sec/2014/q3/650"
          },
          {
            "trust": 0.8,
            "url": "http://seclists.org/oss-sec/2014/q3/688"
          },
          {
            "trust": 0.8,
            "url": "http://seclists.org/oss-sec/2014/q3/685"
          },
          {
            "trust": 0.8,
            "url": "http://lcamtuf.blogspot.com/2014/09/bash-bug-apply-unofficial-patch-now.html"
          },
          {
            "trust": 0.8,
            "url": "https://gist.github.com/anonymous/929d622f3b36b00c0be1"
          },
          {
            "trust": 0.8,
            "url": "https://www.dfranke.us/posts/2014-09-27-shell-shock-exploitation-vectors.html"
          },
          {
            "trust": 0.8,
            "url": "https://shellshocker.net/#"
          },
          {
            "trust": 0.8,
            "url": "https://www.barracuda.com/support/techalerts"
          },
          {
            "trust": 0.8,
            "url": "http://www.checkpoint.com/blog/protecting-shellshock/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://securityadvisories.dlink.com/security/publication.aspx?name=sap10044"
          },
          {
            "trust": 0.8,
            "url": "https://www.debian.org/security/2014/dsa-3032"
          },
          {
            "trust": 0.8,
            "url": "http://learn.extremenetworks.com/rs/extreme/images/vn-2014-001-%20gnu%20bash%20threats%20-cve-2014-7169%20rev01.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://fedoramagazine.org/shellshock-update-bash-packages-that-resolve-cve-2014-6271-and-cve-2014-7169-available/"
          },
          {
            "trust": 0.8,
            "url": "http://www.gentoo.org/security/en/glsa/glsa-201409-09.xml"
          },
          {
            "trust": 0.8,
            "url": "http://alerts.hp.com/r?2.1.3kt.2zr.15ee22.l8mgqe..n.ghvs.8f9a.bw89mq%5f%5fdbosfqk0"
          },
          {
            "trust": 0.8,
            "url": "http://kb.juniper.net/jsa10648"
          },
          {
            "trust": 0.8,
            "url": "http://jpn.nec.com/security-info/av14-003.html"
          },
          {
            "trust": 0.8,
            "url": "http://support.novell.com/security/cve/cve-2014-6271.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.suse.com/support/kb/doc.php?id=7015702"
          },
          {
            "trust": 0.8,
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2014\u0026m=slackware-security.522193"
          },
          {
            "trust": 0.8,
            "url": "http://www.ubuntu.com/usn/usn-2362-1/"
          },
          {
            "trust": 0.8,
            "url": "http://kb.vmware.com/selfservice/microsites/search.do?language=en_us\u0026cmd=displaykc\u0026externalid=2090740"
          },
          {
            "trust": 0.8,
            "url": "http://pkgsrc.se/files.php?messageid=20140925202832.9ad9c98@cvs.netbsd.org"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/jp/jvn55667175/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu97219505/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97220341/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvndb.jvn.jp/ja/contents/2014/jvndb-2014-004399.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvndb.jvn.jp/ja/contents/2014/jvndb-2014-004410.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvndb.jvn.jp/ja/contents/2014/jvndb-2014-004431.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvndb.jvn.jp/ja/contents/2014/jvndb-2014-004476.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvndb.jvn.jp/ja/contents/2014/jvndb-2014-004432.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvndb.jvn.jp/ja/contents/2014/jvndb-2014-004433.html"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-7169"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-6271"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-6277"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-6278"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-7186"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-7187"
          },
          {
            "trust": 0.8,
            "url": "https://www.ipa.go.jp/security/ciadr/vul/20140926-bash.html"
          },
          {
            "trust": 0.8,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-15-344-01"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-14-269-01a"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6277"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6278"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-7186"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-7187"
          },
          {
            "trust": 0.6,
            "url": "http://www.gnu.org/software/bash/"
          },
          {
            "trust": 0.6,
            "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventsubmit_dogoviewsolutiondetails=\u0026solutionid=sk102673"
          },
          {
            "trust": 0.6,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=kb83017"
          },
          {
            "trust": 0.6,
            "url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_bash"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/connections/blogs/psirt/entry/security_bulletin_vulnerabilities_in_bash_affect_certain_qlogic_products_that_ibm_resells_for_bladecenter_and_flex_system_products_cve_2014_6271_c"
          },
          {
            "trust": 0.6,
            "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-notices/archive/hw-372538.htm"
          },
          {
            "trust": 0.6,
            "url": "http://support.f5.com/kb/en-us/solutions/public/15000/600/sol15629.html?ref=rss"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=ssg1s1004932"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21686433"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg3t1021361"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21686494"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21686445"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=ssg1s1004903"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004928"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004911"
          },
          {
            "trust": 0.6,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21686479"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04497075"
          },
          {
            "trust": 0.6,
            "url": "http://seclists.org/fulldisclosure/2014/oct/25"
          },
          {
            "trust": 0.6,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10661\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.6,
            "url": "https://downloads.avaya.com/css/p8/documents/100183172"
          },
          {
            "trust": 0.6,
            "url": "http://www.kb.cert.org/vuls/id/bluu-9paps5"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04479398"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04479402"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04479492"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04475942"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04471532"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04488200"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04478866"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04479536"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04540692"
          },
          {
            "trust": 0.6,
            "url": "http://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04561445"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04471546"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04471538"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04497042"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04512907 "
          },
          {
            "trust": 0.6,
            "url": "http://seclists.org/bugtraq/2015/feb/76"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04558068"
          },
          {
            "trust": 0.6,
            "url": "http://seclists.org/bugtraq/2015/feb/77"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04487558"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04487573"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04496383"
          },
          {
            "trust": 0.6,
            "url": "http://www.kb.cert.org/vuls/id/bluu-9paptm"
          },
          {
            "trust": 0.6,
            "url": "http://www.kb.cert.org/vuls/id/bluu-9paptz"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/1a2e5-5116a33c2fb27/cert_security_mini-_bulletin_xrx15k_for_77xx_r15-03_v1.0.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/2b8d8-513128526dd97/cert_security_mini-_bulletin_xrx15m_for_wc75xx_v1_1.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/2eeef-51056e459c6d8/cert_security_mini-_bulletin_xrx15h_for_p7800_v1_0.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/2a20e-5105457a515cc/cert_security_mini-_bulletin_xrx15e_for_wc57xx_v1_0.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/2a901-510567b876a35/cert_security_mini-_bulletin_xrx15g_for_p6700_v1_0.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/29a7e-50e49f9c009f9/cert_security_mini_bulletin_xrx14g_for_77xx_v1.1.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/1a7a1-50f12e334b734/cert_security_mini-_bulletin_xrx14h_for_wc59xx_v1.pdf"
          },
          {
            "trust": 0.6,
            "url": "https://www.xerox.com/download/security/security-bulletin/2df3c-51055b159fd50/cert_security_mini_bulletin_xrx15f_for_connectkey_1.5_v1-01.pdf"
          },
          {
            "trust": 0.6,
            "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/archive/hw-377648.htm"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004982"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004879"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685873"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21686132"
          },
          {
            "trust": 0.6,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5096533"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21686024"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686037"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21685733"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686171"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21686098"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685875"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=nas8n1020272"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21685541"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004905"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685673"
          },
          {
            "trust": 0.6,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21685837"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687971"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685691"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004933"
          },
          {
            "trust": 0.6,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5096503"
          },
          {
            "trust": 0.6,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004945"
          },
          {
            "trust": 0.6,
            "url": "https://downloads.avaya.com/css/p8/documents/100183088"
          },
          {
            "trust": 0.3,
            "url": "http://lcamtuf.blogspot.de/2014/09/bash-bug-apply-unofficial-patch-now.html"
          },
          {
            "trust": 0.3,
            "url": "https://lists.gnu.org/archive/html/bug-bash/2014-10/msg00040.html"
          },
          {
            "trust": 0.3,
            "url": "http://lcamtuf.blogspot.in/2014/09/quick-notes-about-bash-bug-its-impact.html"
          },
          {
            "trust": 0.3,
            "url": "https://ics-cert.us-cert.gov/advisories/supplement-icsa-14-269-01"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04479601"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04479505"
          },
          {
            "trust": 0.3,
            "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2014-7169-2303276.html"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/oss-sec/2014/q3/735"
          },
          {
            "trust": 0.3,
            "url": "http://googlechromereleases.blogspot.com/2014/10/stable-channel-update-for-chrome-os.html"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04552143"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100183066"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100183009"
          },
          {
            "trust": 0.3,
            "url": "https://lists.gnu.org/archive/html/bug-bash/2014-10/msg00000.html"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100183222"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04477872"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04533737"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04479974"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21686447"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/bluu-9papw7"
          },
          {
            "trust": 0.2,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.2,
            "url": "https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetsea"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/78.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/chefrycar/cookbook_shellshock"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-7169"
          },
          {
            "trust": 0.1,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-14-269-01a"
          },
          {
            "trust": 0.1,
            "url": "https://www.exploit-db.com/exploits/36933/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0224"
          },
          {
            "trust": 0.1,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-7196"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/support/eslg3"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/km01194259"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/bash/4.3-7ubuntu1.3"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-7169.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-7186.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-7187.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/#package"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.1,
            "url": "http://h30046.www3.hp.com/driveralertprofile.php?regioncode=na\u0026langcode=useng"
          },
          {
            "trust": 0.1,
            "url": "http://www.itrc.hp.com/service/cki/secbullarchive.do"
          },
          {
            "trust": 0.1,
            "url": "https://my.vertica.com"
          },
          {
            "trust": 0.1,
            "url": "http://h30046.www3.hp.com/subsignin.php"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2104-6277"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2104-6278"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#252743"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-7169"
          },
          {
            "db": "BID",
            "id": "70166"
          },
          {
            "db": "BID",
            "id": "70152"
          },
          {
            "db": "PACKETSTORM",
            "id": "128764"
          },
          {
            "db": "PACKETSTORM",
            "id": "128431"
          },
          {
            "db": "PACKETSTORM",
            "id": "130336"
          },
          {
            "db": "PACKETSTORM",
            "id": "128753"
          },
          {
            "db": "PACKETSTORM",
            "id": "129069"
          },
          {
            "db": "PACKETSTORM",
            "id": "128666"
          },
          {
            "db": "PACKETSTORM",
            "id": "128762"
          },
          {
            "db": "PACKETSTORM",
            "id": "128545"
          },
          {
            "db": "PACKETSTORM",
            "id": "128437"
          },
          {
            "db": "PACKETSTORM",
            "id": "128456"
          },
          {
            "db": "PACKETSTORM",
            "id": "129617"
          },
          {
            "db": "PACKETSTORM",
            "id": "128513"
          },
          {
            "db": "PACKETSTORM",
            "id": "128509"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#252743",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-7169",
            "ident": null
          },
          {
            "db": "BID",
            "id": "70166",
            "ident": null
          },
          {
            "db": "BID",
            "id": "70152",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128764",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128431",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "130336",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128753",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129069",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128666",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128762",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128545",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128437",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128456",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129617",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128513",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128509",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-000126",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2014-7169",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-09-25T00:00:00",
            "db": "CERT/CC",
            "id": "VU#252743",
            "ident": null
          },
          {
            "date": "2014-09-25T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-7169",
            "ident": null
          },
          {
            "date": "2014-09-27T00:00:00",
            "db": "BID",
            "id": "70166",
            "ident": null
          },
          {
            "date": "2014-09-25T00:00:00",
            "db": "BID",
            "id": "70152",
            "ident": null
          },
          {
            "date": "2014-10-20T17:57:00",
            "db": "PACKETSTORM",
            "id": "128764",
            "ident": null
          },
          {
            "date": "2014-09-26T14:38:27",
            "db": "PACKETSTORM",
            "id": "128431",
            "ident": null
          },
          {
            "date": "2015-02-10T17:43:27",
            "db": "PACKETSTORM",
            "id": "130336",
            "ident": null
          },
          {
            "date": "2014-10-20T13:55:00",
            "db": "PACKETSTORM",
            "id": "128753",
            "ident": null
          },
          {
            "date": "2014-11-12T18:13:47",
            "db": "PACKETSTORM",
            "id": "129069",
            "ident": null
          },
          {
            "date": "2014-10-14T23:07:16",
            "db": "PACKETSTORM",
            "id": "128666",
            "ident": null
          },
          {
            "date": "2014-10-20T17:44:00",
            "db": "PACKETSTORM",
            "id": "128762",
            "ident": null
          },
          {
            "date": "2014-10-03T23:31:42",
            "db": "PACKETSTORM",
            "id": "128545",
            "ident": null
          },
          {
            "date": "2014-09-26T14:40:19",
            "db": "PACKETSTORM",
            "id": "128437",
            "ident": null
          },
          {
            "date": "2014-09-27T16:45:44",
            "db": "PACKETSTORM",
            "id": "128456",
            "ident": null
          },
          {
            "date": "2014-12-17T18:27:35",
            "db": "PACKETSTORM",
            "id": "129617",
            "ident": null
          },
          {
            "date": "2014-10-01T14:44:00",
            "db": "PACKETSTORM",
            "id": "128513",
            "ident": null
          },
          {
            "date": "2014-10-01T11:11:00",
            "db": "PACKETSTORM",
            "id": "128509",
            "ident": null
          },
          {
            "date": "2014-10-28T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-000126",
            "ident": null
          },
          {
            "date": "2014-09-25T01:55:04.367000",
            "db": "NVD",
            "id": "CVE-2014-7169",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-04-14T00:00:00",
            "db": "CERT/CC",
            "id": "VU#252743",
            "ident": null
          },
          {
            "date": "2021-11-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-7169",
            "ident": null
          },
          {
            "date": "2016-07-05T21:53:00",
            "db": "BID",
            "id": "70166",
            "ident": null
          },
          {
            "date": "2015-11-03T19:52:00",
            "db": "BID",
            "id": "70152",
            "ident": null
          },
          {
            "date": "2024-07-18T02:27:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-000126",
            "ident": null
          },
          {
            "date": "2025-10-22T01:16:04.163000",
            "db": "NVD",
            "id": "CVE-2014-7169",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "70166"
          }
        ],
        "trust": 0.3
      },
      "title": {
        "_id": null,
        "data": "GNU Bash shell executes commands in exported functions in environment variables",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#252743"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "70166"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201710-0207

    Vulnerability from variot - Updated: 2026-04-10 23:24

    Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients. An attacker within range of an affected AP and client may leverage these vulnerabilities to conduct attacks that are dependent on the data confidentiality protocols being used. Attacks may include arbitrary packet decryption and injection, TCP connection hijacking, HTTP content injection, or the replay of unicast and group-addressed frames. These vulnerabilities are referred to as Key Reinstallation Attacks or "KRACK" attacks. WPA (Wi-Fi Protected Access) is a system that protects wireless computer networks (Wi-Fi). The GTK group key reloading vulnerability exists in the WPA2 wireless network. CVE-2017-13804: @qwertyoruiopz at KJC Research Intl. S.R.L. CVE-2017-13080: Mathy Vanhoef of the imec-DistriNet group at KU Leuven

    Installation note:

    Firmware version 7.6.9 is installed on AirPort Express, AirPort Extreme, or AirPort Time Capsule base stations with 802.11n using AirPort Utility for Mac or iOS.

    AirPort Utility for Mac is a free download from https://support.apple.com/downloads/ and AirPort Utility for iOS is a free download from the App Store.

    Software Description: - linux-firmware: Firmware for Linux kernel drivers

    Details:

    Mathy Vanhoef discovered that the firmware for several Intel WLAN devices incorrectly handled WPA2 in relation to Wake on WLAN. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256


    Title: Microsoft Security Update Releases Issued: October 16, 2017


    Summary

    The following CVE has undergone a major revision increment.

    • CVE-2017-13080

    CVE Revision Information:

    CVE-2017-13080

    • Title: CVE-2017-13080 | Windows Wireless WPA Group Key Reinstallation Vulnerability
    • https://portal.msrc.microsoft.com/en-us/security-guidance
    • Reason for Revision: CVE-2017-13080 has been added to the October 2017 security release in lieu of ADV170016, which has been deprecated. CVE-2017-13080 was released as part of a multi-vendor coordinated disclosure. Please see the FAQ for more information.
    • Originally posted: October 16, 2017
    • Updated: N/A
    • CVE Severity Rating: Important
    • Version: 1.0

    Other Information

    Recognize and avoid fraudulent email to Microsoft customers:

    If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.

    The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at .


    THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.


    Microsoft respects your privacy. Please read our online Privacy Statement at .

    If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe: .

    These settings will not affect any newsletters youave requested or any mandatory service communications that are considered part of certain Microsoft services.

    For legal Information, see: .

    This newsletter was sent by: Microsoft Corporation 1 Microsoft Way Redmond, Washington, USA 98052

    -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 10.2.0 (Build 1950) - not licensed for commercial use: www.pgp.com Charset: utf-8

    wsFVAwUBWeTb2vsCXwi14Wq8AQimsw//UE92KMajVPARF4zMmfyQnbypCJhwOhsG n7uhJwIF8STYnUDQPfjDPGzmJSDIiQTg3PeewAzg+Ib3GZCsPdUQHMEl/DfGLFWy k814Bh158GDGvWIwDYkIgn1cRrdFP63gVg13ImvgCA2i8KOg9gy1LcnJ1tkIuHAJ bv22fe3zT9PgfLArRpm/nb3qMRnx/VRkTeS80y/RW2a2tkPSzyqLBRgZEP7t+RxJ M4G7cFRS0xpLrPE7PYn8f+tdjA04dWPO77eLOG+gDSpK5mFc8ccdjW2VoKJlRT0I i2HESEZipsuVDd4X3lkl5BigtxdKFTNDIFhE/m3pybDTbjClhjSHF+SR7T8yCOO8 fiXm1Nt0201321dhlNrtxGFV5+Q1lixO0+X7XDGCiZFTECs18vpGrDNZGQGqJ7Hj gmdSCNnfW7tashCXAIUtvoHTzK6v0hLh4ufelvdNgw8+qLUB6Z9RmrHzCHRm/i2p IuCtzp4GlPE0cBz3kUPmS0VYrYddEPS/n/vffeQpfAbbFENclTrEwTTxEYkP/vC0 qh2DNFCKnpvs8EUz/dtAdBuDaF3zuENMf/LJJf1EKOnp06b0JsRYDplKKgICgxrF kpFoAwAE14+KYcEUQhP6/jvDJXmWfMRk60Bsbs0qsfTAsFL7O9z0NrjI5xZEjF3j OYE0vOnWj3g= =2086 -----END PGP SIGNATURE----- . ========================================================================== Kernel Live Patch Security Notice LSN-0036-1 April 2, 2018

    linux vulnerability

    A security issue affects these releases of Ubuntu:

    | Series | Base kernel | Arch | flavors | |------------------+--------------+----------+------------------| | Ubuntu 16.04 LTS | 4.4.0 | amd64 | generic | | Ubuntu 16.04 LTS | 4.4.0 | amd64 | lowlatency | | Ubuntu 14.04 LTS | 4.4.0 | amd64 | generic | | Ubuntu 14.04 LTS | 4.4.0 | amd64 | lowlatency |

    Summary:

    Several security issues were fixed in the kernel. (CVE-2017-13080)

    Jann Horn discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-16995)

    Update instructions:

    The problem can be corrected by updating your livepatches to the following versions:

    | Kernel | Version | flavors | |-----------------+----------+--------------------------| | 4.4.0-116.140 | 33.2 | generic, lowlatency | | lts-4.4.0-116.140_14.04.1-lts-xenial | 14.04.1 | generic, lowlatency |

    Additionally, you should install an updated kernel with these fixes and reboot at your convienience.

    References: CVE-2017-13080, CVE-2017-16995

    -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512

    APPLE-SA-2017-12-6-2 iOS 11.2

    iOS 11.2 addresses the following:

    IOKit Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to execute arbitrary code with system privileges Description: Multiple memory corruption issues were addressed through improved state management. CVE-2017-13847: Ian Beer of Google Project Zero

    IOMobileFrameBuffer Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to execute arbitrary code with kernel privilege Description: A memory corruption issue was addressed with improved memory handling. CVE-2017-13879: Apple

    IOSurface Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2017-13861: Ian Beer of Google Project Zero

    Kernel Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2017-13862: Apple CVE-2017-13876: Ian Beer of Google Project Zero

    Kernel Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2017-13833: Brandon Azad

    Kernel Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to read restricted memory Description: A type confusion issue was addressed with improved memory handling. CVE-2017-13855: Jann Horn of Google Project Zero

    Kernel Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2017-13867: Ian Beer of Google Project Zero

    Kernel Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization. CVE-2017-13865: Ian Beer of Google Project Zero CVE-2017-13868: Brandon Azad CVE-2017-13869: Jann Horn of Google Project Zero

    Mail Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: Incorrect certificate is used for encryption Description: A S/MIME issue existed in the handling of encrypted email. This issue was addressed through improved selection of the encryption certificate. CVE-2017-13874: an anonymous researcher

    Mail Drafts Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An attacker with a privileged network position may be able to intercept mail Description: An encryption issue existed with S/MIME credetials. The issue was addressed with additional checks and user control. CVE-2017-13860: Michael Weishaar of INNEO Solutions GmbH

    Wi-Fi Available for: iPhone 6s, iPhone 6s Plus, iPhone 6, iPhone 6 Plus, iPhone SE, iPhone 5s, 12.9-inch iPad Pro 1st generation, iPad Air 2, iPad Air, iPad 5th generation, iPad mini 4, iPad mini 3, iPad mini 2, and iPod touch 6th generation Released for iPhone 7 and later and iPad Pro 9.7-inch (early 2016) and later in iOS 11.1. This was addressed with improved state management. CVE-2017-13080: Mathy Vanhoef of the imec-DistriNet group at KU Leuven

    Installation note:

    This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from https://www.apple.com/itunes/

    iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device.

    The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device.

    To check that the iPhone, iPod touch, or iPad has been updated:

    • Navigate to Settings
    • Select General
    • Select About. The version after applying this update will be "11.2".

    Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE-----

    iQJdBAEBCgBHFiEEcuX4rtoRe4X62yWlg6PvjDRstEYFAlooN+gpHHByb2R1Y3Qt c2VjdXJpdHktbm9yZXBseUBsaXN0cy5hcHBsZS5jb20ACgkQg6PvjDRstEYDcQ// Q65i3ww4QzpeKJFL+7HA/S7GjzL01/Gmw0CirxBIdFVuOlOm5w6PKfXl7U+UPcdf jJZoIF7Jc5A34FR0szXHsy17kDwaT2fLGTkDJkdNvw3Utw2/MmmBFuaS4SIs3y/+ rXeLWfvCpaJcOLGdhHzM8ubP/k5MLTFopWvUdNeb1lrxxd91xnqibe4TrSs2dVBj gwEIBVfIWeLNaaEscujIRHxv/7f2szzxORzrZx+kXY/ar5HQMKqdlx9yuMetkuXx mT7dUV0ZkKlD73gJBtsHOkyGVUJWThg/xkGpXv11pTt2P/Xo/rhrucK5lcBuiUeJ NBb9isZmzBOf1rmfR/7cTMr/guY29kqN24+XYFLOiHlvBl43QZv5Hj2JiSyP8jVr LKLtBMk/2JLdSH4sFH9kgJ2kB0NB5raiS9CxsNiNmhftvSt9iB19vybr7B04SVBw hCsTA4HrdHVgbp4PSs4kAR/kpmT4yj0ms6++RCDggqZsk4M1uzagokAukqp3ou/k 0qkbjw1uciRAHlED6NmzrZ/aRWS+ASJAkLLCRE07IHGQJt8g2UUMipnPhsM+jA6u GnBD6cJHaTIdvHPEii5XVdynrsBG7Zb1txZsVUoNaa2jV4JBNihVv0Q2xjDxC5CI vyQU45YrbuD1sgtMoBdJhCznxWnQLt3A4LsKRsDy/00= =/F1Z -----END PGP SIGNATURE-----

    .

    Alternatively, on your watch, select "My Watch > General > About".

    Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/wpa_supplicant-2.6-i586-1_slack14.2.txz: Upgraded. This update includes patches to mitigate the WPA2 protocol issues known as "KRACK" (Key Reinstallation AttaCK), which may be used to decrypt data, hijack TCP connections, and to forge and inject packets. This is the list of vulnerabilities that are addressed here: CVE-2017-13077: Reinstallation of the pairwise encryption key (PTK-TK) in the 4-way handshake. CVE-2017-13079: Reinstallation of the integrity group key (IGTK) in the 4-way handshake. CVE-2017-13081: Reinstallation of the integrity group key (IGTK) in the group key handshake. CVE-2017-13082: Accepting a retransmitted Fast BSS Transition (FT) Reassociation Request and reinstalling the pairwise encryption key (PTK-TK) while processing it. CVE-2017-13084: Reinstallation of the STK key in the PeerKey handshake. CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake. For more information, see: https://www.krackattacks.com/ https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13077 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13078 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13079 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13080 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13081 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13082 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13084 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13086 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13087 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13088 ( Security fix ) +--------------------------+

    Where to find the new packages: +-----------------------------+

    Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)

    Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.

    Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/wpa_supplicant-2.6-i486-1_slack14.0.txz

    Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/wpa_supplicant-2.6-x86_64-1_slack14.0.txz

    Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/wpa_supplicant-2.6-i486-1_slack14.1.txz

    Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/wpa_supplicant-2.6-x86_64-1_slack14.1.txz

    Updated package for Slackware 14.2: ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/wpa_supplicant-2.6-i586-1_slack14.2.txz

    Updated package for Slackware x86_64 14.2: ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/wpa_supplicant-2.6-x86_64-1_slack14.2.txz

    Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/wpa_supplicant-2.6-i586-2.txz

    Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/wpa_supplicant-2.6-x86_64-2.txz

    MD5 signatures: +-------------+

    Slackware 14.0 package: d8ecfaadb50b3547967ab53733ffc019 wpa_supplicant-2.6-i486-1_slack14.0.txz

    Slackware x86_64 14.0 package: f25216d28800504ce498705da7c9a825 wpa_supplicant-2.6-x86_64-1_slack14.0.txz

    Slackware 14.1 package: 15c61050e4bab2581757befd86be74c0 wpa_supplicant-2.6-i486-1_slack14.1.txz

    Slackware x86_64 14.1 package: 49fd537a520338744f7757615556d352 wpa_supplicant-2.6-x86_64-1_slack14.1.txz

    Slackware 14.2 package: c5539f40c8510af89be92945f0f80185 wpa_supplicant-2.6-i586-1_slack14.2.txz

    Slackware x86_64 14.2 package: 4c527ff84fcdfd7839f217bbce2e4ae4 wpa_supplicant-2.6-x86_64-1_slack14.2.txz

    Slackware -current package: 28bd88a54e96368f7a7020c1f5fb67fe n/wpa_supplicant-2.6-i586-2.txz

    Slackware x86_64 -current package: 464fc6b48d1ac077f47e9a3a8534c160 n/wpa_supplicant-2.6-x86_64-2.txz

    Installation instructions: +------------------------+

    Upgrade the package as root:

    upgradepkg wpa_supplicant-2.6-i586-1_slack14.2.txz

    +-----+

    Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com

    +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. | +------------------------------------------------------------------------+ -----BEGIN PGP SIGNATURE-----

    iEYEARECAAYFAlnnrOgACgkQakRjwEAQIjPgvQCfRcXlhuFjrDNPbEUeZrYLxnkW b+4An0l5cZOdtohI7Fq0NbryWajCOnM2 =5HQM -----END PGP SIGNATURE----- . CVE-2017-7156: an anonymous researcher CVE-2017-7157: an anonymous researcher CVE-2017-13856: Jeonghoon Shin CVE-2017-13870: an anonymous researcher CVE-2017-13866: an anonymous researcher Entry added December 13, 2017

    Wi-Fi Available for: Apple TV (4th generation) Released for Apple TV 4K in tvOS 11.1

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.4.10"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.5.9"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.3.11"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.4.8"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.5.10"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.4.7"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.5.7"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.5.8"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.4.11"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "w1 fi",
            "version": "0.4.9"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.6.9"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.5"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.6.8"
          },
          {
            "_id": null,
            "model": "openstack cloud",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.6.9"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.5"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.4.9"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.9"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.4.10"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.11"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.7"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "freebsd",
            "version": "*"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.4.11"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.8"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.6"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "freebsd",
            "version": "10"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.5.7"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.6"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.4"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.5.8"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.7"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.6.10"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.7.3"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "linux enterprise point of sale",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.4"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.7"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.6.10"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.8"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.7.3"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "freebsd",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.9"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.4"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.10"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.5.10"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.5.9"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.8"
          },
          {
            "_id": null,
            "model": "leap",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "42.2"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.4.7"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "17.04"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.2.4"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.3.10"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "freebsd",
            "version": "10.4"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.5.11"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.4.8"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.5.11"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "16.04"
          },
          {
            "_id": null,
            "model": "hostapd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "0.6.8"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "freebsd",
            "version": "11"
          },
          {
            "_id": null,
            "model": "wpa supplicant",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "w1 fi",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "leap",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "42.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "9front",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "adtran",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "actiontec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "aerohive",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "alcatel lucent",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "android open source",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "arch linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "aruba",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "asustek computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "barracuda",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "broadcom",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cambium",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "centos",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cradlepoint",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cypress semiconductor",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "digi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "draytek",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "edimax computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "engenius",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "endian",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "espressif",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "extreme",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "f secure",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fedora",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "google",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hostap",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ipfire",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "lancom",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "lede",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "lifx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "lenovo",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "microchip",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mojo",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nest",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netgear",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "opnsense",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "omnirom",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "open mesh",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "peplink",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "riverbed",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "rockwell automation",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ruckus",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "samsung mobile",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sierra",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sonos",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sony",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sophos",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "synology",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "tp link",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "technicolor",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "texas instruments",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "toshiba commerce",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "toshiba electronic devices storage",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "toshiba memory",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "turris omnia",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubiquiti",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "volumio",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "watchguard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "xiaomi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "xirrus",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "zebra",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "zyxel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dd wrt",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "eero",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "pfsense",
            "version": null
          },
          {
            "_id": null,
            "model": "alliance wi-fi protected access 2",
            "scope": null,
            "trust": 0.6,
            "vendor": "wi fi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.4,
            "vendor": "linux desktop",
            "version": "12"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.4,
            "vendor": "linux server",
            "version": "11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "ubuntu linux",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "ubuntu linux",
            "version": "16.04"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "ubuntu linux",
            "version": "17.04"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "debian linux",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "debian linux",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "freebsd",
            "version": "*"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "freebsd",
            "version": "10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "freebsd",
            "version": "10.4"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "freebsd",
            "version": "11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "freebsd",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "leap",
            "version": "42.2"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "leap",
            "version": "42.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "linux desktop",
            "version": "7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "linux server",
            "version": "7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.2.4"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.2.5"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.2.6"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.2.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.3.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.3.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.3.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.3.11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.4.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.4.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.4.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.4.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.4.11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.5.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.5.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.5.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.5.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.5.11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.6.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.6.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.6.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "0.7.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.4"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "hostapd",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.2.4"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.2.5"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.2.6"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.2.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.2.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.3.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.3.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.3.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.3.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.3.11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.4.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.4.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.4.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.4.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.4.11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.5.7"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.5.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.5.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.5.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.5.11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.6.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.6.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.6.10"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "0.7.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.4"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "wpa supplicant",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "linux point of sale",
            "version": "11"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "linux server",
            "version": "12"
          },
          {
            "_id": null,
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "openstack cloud",
            "version": "6"
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4"
          },
          {
            "db": "CERT/CC",
            "id": "VU#228519"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-13080"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Apple",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "144860"
          },
          {
            "db": "PACKETSTORM",
            "id": "145394"
          },
          {
            "db": "PACKETSTORM",
            "id": "148445"
          },
          {
            "db": "PACKETSTORM",
            "id": "144828"
          },
          {
            "db": "PACKETSTORM",
            "id": "145430"
          },
          {
            "db": "PACKETSTORM",
            "id": "145271"
          },
          {
            "db": "PACKETSTORM",
            "id": "144829"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2017-13080",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "ADJACENT_NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 2.9,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 5.5,
                "id": "CVE-2017-13080",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "LOW",
                "trust": 1.1,
                "vectorString": "AV:A/AC:M/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "ADJACENT_NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.4,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 5.5,
                "id": "CNVD-2017-30403",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:A/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "ADJACENT_NETWORK",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.4,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 5.5,
                "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:A/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.9 [IVD]"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 1.6,
                "id": "CVE-2017-13080",
                "impactScore": 3.6,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2017-13080",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2017-30403",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201710-383",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "IVD",
                "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4",
                "trust": 0.2,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2017-13080",
                "trust": 0.1,
                "value": "LOW"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-13080"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients. An attacker within range of an affected AP and client may leverage these vulnerabilities to conduct attacks that are dependent on the data confidentiality protocols being used. Attacks may include arbitrary packet decryption and injection, TCP connection hijacking, HTTP content injection, or the replay of unicast and group-addressed frames. These vulnerabilities are referred to as Key Reinstallation Attacks or \"KRACK\" attacks. WPA (Wi-Fi Protected Access) is a system that protects wireless computer networks (Wi-Fi). The GTK group key reloading vulnerability exists in the WPA2 wireless network. \nCVE-2017-13804: @qwertyoruiopz at KJC Research Intl. S.R.L. \nCVE-2017-13080: Mathy Vanhoef of the imec-DistriNet group at KU\nLeuven\n\nInstallation note:\n\nFirmware version 7.6.9 is installed on AirPort Express, AirPort\nExtreme, or AirPort Time Capsule base stations with 802.11n using\nAirPort Utility for Mac or iOS. \n\nAirPort Utility for Mac is a free download from\nhttps://support.apple.com/downloads/ and AirPort Utility for iOS\nis a free download from the App Store. \n\nSoftware Description:\n- linux-firmware: Firmware for Linux kernel drivers\n\nDetails:\n\nMathy Vanhoef discovered that the firmware for several Intel WLAN\ndevices incorrectly handled WPA2 in relation to Wake on WLAN. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n********************************************************************\nTitle: Microsoft Security Update Releases\nIssued: October 16, 2017\n********************************************************************\n\nSummary\n=======\n\nThe following CVE has undergone a major revision increment. \n\n* CVE-2017-13080\n\n\nCVE Revision Information:\n=====================\n\nCVE-2017-13080\n\n - Title: CVE-2017-13080 | Windows Wireless WPA Group Key \n Reinstallation Vulnerability\n - https://portal.msrc.microsoft.com/en-us/security-guidance\n - Reason for Revision: CVE-2017-13080 has been added to the October \n 2017 security release in lieu of ADV170016, which has been \n deprecated. CVE-2017-13080 was released as part of a multi-vendor \n coordinated disclosure. Please see the FAQ for more information. \n - Originally posted: October 16, 2017\n - Updated: N/A \n - CVE Severity Rating: Important\n - Version: 1.0\n\n\nOther Information\n=================\n\nRecognize and avoid fraudulent email to Microsoft customers:\n=============================================================\nIf you receive an email message that claims to be distributing \na Microsoft security update, it is a hoax that may contain \nmalware or pointers to malicious websites. Microsoft does \nnot distribute security updates via email. \n\nThe Microsoft Security Response Center (MSRC) uses PGP to digitally \nsign all security notifications. However, PGP is not required for \nreading security notifications, reading security bulletins, or \ninstalling security updates. You can obtain the MSRC public PGP key\nat . \n\n********************************************************************\nTHE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS\nPROVIDED \"AS IS\" WITHOUT WARRANTY OF ANY KIND. MICROSOFT\nDISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING\nTHE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\nPURPOSE. \nIN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE\nLIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,\nINCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL\nDAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN\nADVISED OF THE POSSIBILITY OF SUCH DAMAGES. \nSOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY\nFOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING\nLIMITATION MAY NOT APPLY. \n********************************************************************\n\nMicrosoft respects your privacy. Please read our online Privacy\nStatement at . \n\nIf you would prefer not to receive future technical security\nnotification alerts by email from Microsoft and its family of\ncompanies please visit the following website to unsubscribe:\n. \n\nThese settings will not affect any newsletters youave requested or\nany mandatory service communications that are considered part of\ncertain Microsoft services. \n\nFor legal Information, see:\n. \n\nThis newsletter was sent by:\nMicrosoft Corporation\n1 Microsoft Way\nRedmond, Washington, USA\n98052\n\n-----BEGIN PGP SIGNATURE-----\nVersion: PGP Desktop 10.2.0 (Build 1950) - not licensed for commercial use: www.pgp.com\nCharset: utf-8\n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\nOYE0vOnWj3g=\n=2086\n-----END PGP SIGNATURE-----\n. ==========================================================================\nKernel Live Patch Security Notice LSN-0036-1\nApril 2, 2018\n\nlinux vulnerability\n==========================================================================\n\nA security issue affects these releases of Ubuntu:\n\n| Series           | Base kernel  | Arch     | flavors          |\n|------------------+--------------+----------+------------------|\n| Ubuntu 16.04 LTS | 4.4.0        | amd64    | generic          |\n| Ubuntu 16.04 LTS | 4.4.0        | amd64    | lowlatency       |\n| Ubuntu 14.04 LTS | 4.4.0        | amd64    | generic          |\n| Ubuntu 14.04 LTS | 4.4.0        | amd64    | lowlatency       |\n\nSummary:\n\nSeveral security issues were fixed in the kernel. (CVE-2017-13080)\n\nJann Horn discovered that the Berkeley Packet Filter (BPF) implementation\nin the Linux kernel improperly performed sign extension in some situations. \nA local attacker could use this to cause a denial of service (system crash)\nor possibly execute arbitrary code. (CVE-2017-16995)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your livepatches to the following\nversions:\n\n| Kernel          | Version  | flavors                  |\n|-----------------+----------+--------------------------|\n| 4.4.0-116.140   | 33.2     | generic, lowlatency      |\n| lts-4.4.0-116.140_14.04.1-lts-xenial | 14.04.1  | generic, lowlatency      |\n\nAdditionally, you should install an updated kernel with these fixes and\nreboot at your convienience. \n\nReferences:\n  CVE-2017-13080, CVE-2017-16995\n\n-- \nubuntu-security-announce mailing list\nubuntu-security-announce@lists.ubuntu.com\nModify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\nAPPLE-SA-2017-12-6-2 iOS 11.2\n\niOS 11.2 addresses the following:\n\nIOKit\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: Multiple memory corruption issues were addressed through\nimproved state management. \nCVE-2017-13847: Ian Beer of Google Project Zero\n\nIOMobileFrameBuffer\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to execute arbitrary code with\nkernel privilege\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2017-13879: Apple\n\nIOSurface\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to execute arbitrary code with\nkernel privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2017-13861: Ian Beer of Google Project Zero\n\nKernel\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to execute arbitrary code with\nkernel privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2017-13862: Apple\nCVE-2017-13876: Ian Beer of Google Project Zero\n\nKernel\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to read restricted memory\nDescription: An out-of-bounds read was addressed with improved bounds\nchecking. \nCVE-2017-13833: Brandon Azad\n\nKernel\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to read restricted memory\nDescription: A type confusion issue was addressed with improved\nmemory handling. \nCVE-2017-13855: Jann Horn of Google Project Zero\n\nKernel\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: A malicious application may be able to execute arbitrary\ncode with kernel privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2017-13867: Ian Beer of Google Project Zero\n\nKernel\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An application may be able to read restricted memory\nDescription: A validation issue was addressed with improved input\nsanitization. \nCVE-2017-13865: Ian Beer of Google Project Zero\nCVE-2017-13868: Brandon Azad\nCVE-2017-13869: Jann Horn of Google Project Zero\n\nMail\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: Incorrect certificate is used for encryption\nDescription: A S/MIME issue existed in the handling of encrypted\nemail. This issue was addressed through improved selection of the\nencryption certificate. \nCVE-2017-13874: an anonymous researcher\n\nMail Drafts\nAvailable for: iPhone 5s and later, iPad Air and later, and iPod\ntouch 6th generation\nImpact: An attacker with a privileged network position may be able to\nintercept mail\nDescription: An encryption issue existed with S/MIME credetials. The\nissue was addressed with additional checks and user control. \nCVE-2017-13860: Michael Weishaar of INNEO Solutions GmbH\n\nWi-Fi\nAvailable for: iPhone 6s, iPhone 6s Plus, iPhone 6, iPhone 6 Plus,\niPhone SE, iPhone 5s, 12.9-inch iPad Pro 1st generation, iPad Air 2,\niPad Air, iPad 5th generation, iPad mini 4, iPad mini 3, iPad mini 2,\nand iPod touch 6th generation\nReleased for iPhone 7 and later and iPad Pro 9.7-inch (early 2016)\nand later in iOS 11.1. This was addressed with improved state management. \nCVE-2017-13080: Mathy Vanhoef of the imec-DistriNet group at KU\nLeuven\n\nInstallation note:\n\nThis update is available through iTunes and Software Update on your\niOS device, and will not appear in your computer\u0027s Software Update\napplication, or in the Apple Downloads site. Make sure you have an\nInternet connection and have installed the latest version of iTunes\nfrom https://www.apple.com/itunes/\n\niTunes and Software Update on the device will automatically check\nApple\u0027s update server on its weekly schedule. When an update is\ndetected, it is downloaded and the option to be installed is\npresented to the user when the iOS device is docked. We recommend\napplying the update immediately if possible. Selecting Don\u0027t Install\nwill present the option the next time you connect your iOS device. \n\nThe automatic update process may take up to a week depending on the\nday that iTunes or the device checks for updates. You may manually\nobtain the update via the Check for Updates button within iTunes, or\nthe Software Update on your device. \n\nTo check that the iPhone, iPod touch, or iPad has been updated:\n\n* Navigate to Settings\n* Select General\n* Select About. The version after applying this update\nwill be \"11.2\". \n\nInformation will also be posted to the Apple Security Updates\nweb site: https://support.apple.com/kb/HT201222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n-----BEGIN PGP SIGNATURE-----\n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\nvyQU45YrbuD1sgtMoBdJhCznxWnQLt3A4LsKRsDy/00=\n=/F1Z\n-----END PGP SIGNATURE-----\n\n\n\n. \n\nAlternatively, on your watch, select \"My Watch \u003e General \u003e About\". \n\n\nHere are the details from the Slackware 14.2 ChangeLog:\n+--------------------------+\npatches/packages/wpa_supplicant-2.6-i586-1_slack14.2.txz:  Upgraded. \n  This update includes patches to mitigate the WPA2 protocol issues known\n  as \"KRACK\" (Key Reinstallation AttaCK), which may be used to decrypt data,\n  hijack TCP connections, and to forge and inject packets. This is the\n  list of vulnerabilities that are addressed here:\n  CVE-2017-13077: Reinstallation of the pairwise encryption key (PTK-TK) in the\n    4-way handshake. \n  CVE-2017-13079: Reinstallation of the integrity group key (IGTK) in the 4-way\n    handshake. \n  CVE-2017-13081: Reinstallation of the integrity group key (IGTK) in the group\n    key handshake. \n  CVE-2017-13082: Accepting a retransmitted Fast BSS Transition (FT)\n    Reassociation Request and reinstalling the pairwise encryption key (PTK-TK)\n    while processing it. \n  CVE-2017-13084: Reinstallation of the STK key in the PeerKey handshake. \n  CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS)\n    PeerKey (TPK) key in the TDLS handshake. \n  For more information, see:\n    https://www.krackattacks.com/\n    https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13077\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13078\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13079\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13080\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13081\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13082\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13084\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13086\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13087\n    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13088\n  (* Security fix *)\n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project!  :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/wpa_supplicant-2.6-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/wpa_supplicant-2.6-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/wpa_supplicant-2.6-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/wpa_supplicant-2.6-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware 14.2:\nftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/wpa_supplicant-2.6-i586-1_slack14.2.txz\n\nUpdated package for Slackware x86_64 14.2:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/wpa_supplicant-2.6-x86_64-1_slack14.2.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/wpa_supplicant-2.6-i586-2.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/wpa_supplicant-2.6-x86_64-2.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 14.0 package:\nd8ecfaadb50b3547967ab53733ffc019  wpa_supplicant-2.6-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\nf25216d28800504ce498705da7c9a825  wpa_supplicant-2.6-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\n15c61050e4bab2581757befd86be74c0  wpa_supplicant-2.6-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\n49fd537a520338744f7757615556d352  wpa_supplicant-2.6-x86_64-1_slack14.1.txz\n\nSlackware 14.2 package:\nc5539f40c8510af89be92945f0f80185  wpa_supplicant-2.6-i586-1_slack14.2.txz\n\nSlackware x86_64 14.2 package:\n4c527ff84fcdfd7839f217bbce2e4ae4  wpa_supplicant-2.6-x86_64-1_slack14.2.txz\n\nSlackware -current package:\n28bd88a54e96368f7a7020c1f5fb67fe  n/wpa_supplicant-2.6-i586-2.txz\n\nSlackware x86_64 -current package:\n464fc6b48d1ac077f47e9a3a8534c160  n/wpa_supplicant-2.6-x86_64-2.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the package as root:\n# upgradepkg wpa_supplicant-2.6-i586-1_slack14.2.txz\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list:                          |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message:                                                     |\n|                                                                        |\n|   unsubscribe slackware-security                                       |\n|                                                                        |\n| You will get a confirmation message back containing instructions to    |\n| complete the process.  Please do not reply to this email address.      |\n+------------------------------------------------------------------------+\n-----BEGIN PGP SIGNATURE-----\n\niEYEARECAAYFAlnnrOgACgkQakRjwEAQIjPgvQCfRcXlhuFjrDNPbEUeZrYLxnkW\nb+4An0l5cZOdtohI7Fq0NbryWajCOnM2\n=5HQM\n-----END PGP SIGNATURE-----\n. \nCVE-2017-7156: an anonymous researcher\nCVE-2017-7157: an anonymous researcher\nCVE-2017-13856: Jeonghoon Shin\nCVE-2017-13870: an anonymous researcher\nCVE-2017-13866: an anonymous researcher\nEntry added December 13, 2017\n\nWi-Fi\nAvailable for: Apple TV (4th generation)\nReleased for Apple TV 4K in tvOS 11.1",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2017-13080"
          },
          {
            "db": "CERT/CC",
            "id": "VU#228519"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          },
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4"
          },
          {
            "db": "PACKETSTORM",
            "id": "144860"
          },
          {
            "db": "PACKETSTORM",
            "id": "145394"
          },
          {
            "db": "PACKETSTORM",
            "id": "148445"
          },
          {
            "db": "PACKETSTORM",
            "id": "144828"
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080"
          },
          {
            "db": "PACKETSTORM",
            "id": "144666"
          },
          {
            "db": "PACKETSTORM",
            "id": "145228"
          },
          {
            "db": "PACKETSTORM",
            "id": "144636"
          },
          {
            "db": "PACKETSTORM",
            "id": "147010"
          },
          {
            "db": "PACKETSTORM",
            "id": "145271"
          },
          {
            "db": "PACKETSTORM",
            "id": "144829"
          },
          {
            "db": "PACKETSTORM",
            "id": "144663"
          },
          {
            "db": "PACKETSTORM",
            "id": "145430"
          }
        ],
        "trust": 3.51
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2017-13080",
            "trust": 3.7
          },
          {
            "db": "CERT/CC",
            "id": "VU#228519",
            "trust": 3.1
          },
          {
            "db": "LENOVO",
            "id": "LEN-17420",
            "trust": 2.5
          },
          {
            "db": "BID",
            "id": "101274",
            "trust": 2.3
          },
          {
            "db": "SECTRACK",
            "id": "1039703",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039572",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039573",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039576",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039577",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039578",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039581",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1039585",
            "trust": 1.7
          },
          {
            "db": "SIEMENS",
            "id": "SSA-901333",
            "trust": 1.7
          },
          {
            "db": "CERT@VDE",
            "id": "VDE-2017-003",
            "trust": 1.7
          },
          {
            "db": "CERT@VDE",
            "id": "VDE-2017-005",
            "trust": 1.7
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383",
            "trust": 0.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10827",
            "trust": 0.8
          },
          {
            "db": "DLINK",
            "id": "SAP10075",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2020.3967",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2020.4125",
            "trust": 0.6
          },
          {
            "db": "LENOVO",
            "id": "LEN-45682",
            "trust": 0.6
          },
          {
            "db": "IVD",
            "id": "52CDA2A8-8175-413F-97BB-CF2E4C75F7C4",
            "trust": 0.2
          },
          {
            "db": "ICS CERT",
            "id": "ICSMA-18-114-01",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "144860",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "145394",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148445",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "144828",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "145430",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "144666",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "145228",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "144636",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147010",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "145271",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "144829",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "144663",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4"
          },
          {
            "db": "CERT/CC",
            "id": "VU#228519"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080"
          },
          {
            "db": "PACKETSTORM",
            "id": "144860"
          },
          {
            "db": "PACKETSTORM",
            "id": "145394"
          },
          {
            "db": "PACKETSTORM",
            "id": "148445"
          },
          {
            "db": "PACKETSTORM",
            "id": "144828"
          },
          {
            "db": "PACKETSTORM",
            "id": "145430"
          },
          {
            "db": "PACKETSTORM",
            "id": "144666"
          },
          {
            "db": "PACKETSTORM",
            "id": "145228"
          },
          {
            "db": "PACKETSTORM",
            "id": "144636"
          },
          {
            "db": "PACKETSTORM",
            "id": "147010"
          },
          {
            "db": "PACKETSTORM",
            "id": "145271"
          },
          {
            "db": "PACKETSTORM",
            "id": "144829"
          },
          {
            "db": "PACKETSTORM",
            "id": "144663"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-13080"
          }
        ]
      },
      "id": "VAR-201710-0207",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          }
        ],
        "trust": 1.6125
      },
      "iot_taxonomy": {
        "_id": null,
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          }
        ]
      },
      "last_update_date": "2026-04-10T23:24:45.096000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Patch for WPA2 Wireless Network GTK Group Key Reload Vulnerability (CNVD-2017-30403)",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/103821"
          },
          {
            "title": "Multiple WiFi product WPA2 Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=75497"
          },
          {
            "title": "Red Hat: Important: wpa_supplicant security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20172911 - Security Advisory"
          },
          {
            "title": "Ubuntu Security Notice: linux-firmware vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3505-1"
          },
          {
            "title": "Red Hat: Important: wpa_supplicant security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20172907 - Security Advisory"
          },
          {
            "title": "Red Hat: CVE-2017-13080",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2017-13080"
          },
          {
            "title": "Arch Linux Issues: ",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=CVE-2017-13080"
          },
          {
            "title": "Apple: Wi-Fi Update for Boot Camp 6.4.0",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=4dc3bb86865485e4364fd6b2dc2fc379"
          },
          {
            "title": "Apple: watchOS 4.1",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=345c3fa8a313cd9a1ced5ef372c465c4"
          },
          {
            "title": "Apple: AirPort Base Station Firmware Update 7.6.9",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=43d8dcf7961e20b6ec02761d12969c19"
          },
          {
            "title": "Apple: AirPort Base Station Firmware Update 7.7.9",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=7ca8130f8030911575aa17c0e84114dd"
          },
          {
            "title": "Debian CVElist Bug Report Logs: firmware-brcm80211: BroadPwn vulnerability CVE-2017-9417",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=2e0affd9108e95fa2aa2c706c74cd8a9"
          },
          {
            "title": "Ubuntu Security Notice: wpa vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-3455-1"
          },
          {
            "title": "Debian Security Advisories: DSA-3999-1 wpa -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=08990d9925276738bd732fa4d58f9ef0"
          },
          {
            "title": "Apple: tvOS 11.1",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=7a8e908aff7c02a31b2d335766e6d5c2"
          },
          {
            "title": "HP: HPSBHF03582 rev. 2 - KRACK Vulnerability Affecting WPA2 Wireless Security",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBHF03582"
          },
          {
            "title": "Arch Linux Advisories: [ASA-201710-23] hostapd: man-in-the-middle",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=ASA-201710-23"
          },
          {
            "title": "Arch Linux Advisories: [ASA-201710-22] wpa_supplicant: man-in-the-middle",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=ASA-201710-22"
          },
          {
            "title": "HP: HPSBPI03574 rev. 1 - WPA, WPA2 Key Reinstallation Attacks (KRACK attacks) Potential Remote Disclosure of Information: Certain HP Enterprise Printer and MFP products, Certain HP PageWide Printer and MFP Products, HP Jetdirect Accessory Products",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBPI03574"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=6df91267eee9400a24a98876f50ffe84"
          },
          {
            "title": "Apple: iOS 11.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=75d972e5e0d4b4019a5bb869f1befb00"
          },
          {
            "title": "HP: HPSBHF03697 rev. 1 - Intel\u00ae PROSet/Wireless WiFi Software November 2020 Security Updates",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBHF03697"
          },
          {
            "title": "Apple: tvOS 11.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=8d9ba2a4e31c3f4387eccea1c1dbc99c"
          },
          {
            "title": "Apple: watchOS 4.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=8658f9579768b2f61d8a0c0f1d03ed58"
          },
          {
            "title": "Apple: iOS 11.1",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=7814c280e80969d4c4d88f74b13290f2"
          },
          {
            "title": "Android Security Bulletins: Android Security Bulletin\u2014November 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=android_security_bulletins\u0026qid=8c29eb008bb212762e5cfb25c7c5c0d5"
          },
          {
            "title": "Apple: macOS High Sierra 10.13.4, Security Update 2018-002 Sierra, and Security Update 2018-002 El Capitan",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=8e90004e437eabc9a0809772bb0707c4"
          },
          {
            "title": "Cisco: Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-20171016-wpa"
          },
          {
            "title": "HP: HPSBHF03571 rev. 6  -  Intel Management Engine Cumulative Security update and fix for WPA2 vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBHF03571"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - April 2018",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=4019ca77f50c7a34e4d97833e6f3321e"
          },
          {
            "title": "Apple: macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=870f3f04ef17f7b183f74ae687a1561d"
          },
          {
            "title": "Oracle Linux Bulletins: Oracle Linux Bulletin - October 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_linux_bulletins\u0026qid=7251d5e5f2b1771951980ad7cfde50ba"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - January 2018",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=e2a7f287e9acc8c64ab3df71130bc64d"
          },
          {
            "title": "vanhoefm-krackattacks-scripts",
            "trust": 0.1,
            "url": "https://github.com/84KaliPleXon3/vanhoefm-krackattacks-scripts "
          },
          {
            "title": "krankattack",
            "trust": 0.1,
            "url": "https://github.com/DevKosov/krankattack "
          },
          {
            "title": "krackattacks-scripts",
            "trust": 0.1,
            "url": "https://github.com/vanhoefm/krackattacks-scripts "
          },
          {
            "title": "KRACK",
            "trust": 0.1,
            "url": "https://github.com/chinatso/KRACK "
          },
          {
            "title": "krackinfo",
            "trust": 0.1,
            "url": "https://github.com/kristate/krackinfo "
          },
          {
            "title": "nixos-issue-db-example",
            "trust": 0.1,
            "url": "https://github.com/andir/nixos-issue-db-example "
          },
          {
            "title": "The Register",
            "trust": 0.1,
            "url": "https://www.theregister.co.uk/2017/11/07/android_november_security_update/"
          },
          {
            "title": "The Register",
            "trust": 0.1,
            "url": "https://www.theregister.co.uk/2017/10/16/wpa2_inscure_krackattack/"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-323",
            "trust": 1.0
          },
          {
            "problemtype": "CWE-330",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2017-13080"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.5,
            "url": "http://www.securityfocus.com/bid/101274"
          },
          {
            "trust": 3.3,
            "url": "https://source.android.com/security/bulletin/2017-11-01"
          },
          {
            "trust": 2.6,
            "url": "https://www.krackattacks.com/"
          },
          {
            "trust": 2.5,
            "url": "http://www.arubanetworks.com/assets/alert/aruba-psa-2017-007.txt"
          },
          {
            "trust": 2.5,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20171016-wpa"
          },
          {
            "trust": 2.5,
            "url": "http://www.debian.org/security/2017/dsa-3999"
          },
          {
            "trust": 2.5,
            "url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2017-13080"
          },
          {
            "trust": 2.5,
            "url": "https://access.redhat.com/security/vulnerabilities/kracks"
          },
          {
            "trust": 1.8,
            "url": "http://www.kb.cert.org/vuls/id/228519"
          },
          {
            "trust": 1.8,
            "url": "https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt"
          },
          {
            "trust": 1.8,
            "url": "https://access.redhat.com/errata/rhsa-2017:2911"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039585"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039581"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039578"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039577"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039576"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039573"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039572"
          },
          {
            "trust": 1.7,
            "url": "https://support.lenovo.com/us/en/product_security/len-17420"
          },
          {
            "trust": 1.7,
            "url": "https://security.freebsd.org/advisories/freebsd-sa-17:07.wpa.asc"
          },
          {
            "trust": 1.7,
            "url": "https://access.redhat.com/errata/rhsa-2017:2907"
          },
          {
            "trust": 1.7,
            "url": "http://www.ubuntu.com/usn/usn-3455-1"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00024.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00023.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00020.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1039703"
          },
          {
            "trust": 1.7,
            "url": "https://security.gentoo.org/glsa/201711-03"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208222"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208221"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208220"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208219"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208334"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208327"
          },
          {
            "trust": 1.7,
            "url": "https://support.apple.com/ht208325"
          },
          {
            "trust": 1.7,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
          },
          {
            "trust": 1.7,
            "url": "https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html"
          },
          {
            "trust": 1.7,
            "url": "https://support.hpe.com/hpsc/doc/public/display?doclocale=en_us\u0026docid=emr_na-hpesbhf03792en_us"
          },
          {
            "trust": 1.7,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf"
          },
          {
            "trust": 1.7,
            "url": "https://cert.vde.com/en-us/advisories/vde-2017-005"
          },
          {
            "trust": 1.7,
            "url": "https://cert.vde.com/en-us/advisories/vde-2017-003"
          },
          {
            "trust": 1.7,
            "url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00015.html"
          },
          {
            "trust": 1.7,
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00402.html"
          },
          {
            "trust": 1.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13080"
          },
          {
            "trust": 0.8,
            "url": "https://cwe.mitre.org/data/definitions/323.html"
          },
          {
            "trust": 0.8,
            "url": "https://papers.mathyvanhoef.com/ccs2017.pdf"
          },
          {
            "trust": 0.8,
            "url": "https://actiontecsupport.zendesk.com/hc/en-us/articles/115005205283-krack-vulnerability"
          },
          {
            "trust": 0.8,
            "url": "https://www3.aerohive.com/support/security-bulletins/product-security-announcement-aerohives-response-to-krack-10162017.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.al-enterprise.com/en/support/security-alert-krack"
          },
          {
            "trust": 0.8,
            "url": "https://support.apple.com/en-gb/ht208222"
          },
          {
            "trust": 0.8,
            "url": "https://security.archlinux.org/avg-447"
          },
          {
            "trust": 0.8,
            "url": "https://www.asus.com/static_webpage/asus-product-security-advisory/"
          },
          {
            "trust": 0.8,
            "url": "https://community.barracudanetworks.com/forum/index.php?/topic/23525-security-advisories/page-2"
          },
          {
            "trust": 0.8,
            "url": "https://lists.centos.org/pipermail/centos-announce/2017-october/022569.html"
          },
          {
            "trust": 0.8,
            "url": "https://community.cypress.com/docs/doc-13871"
          },
          {
            "trust": 0.8,
            "url": "http://supportannouncement.us.dlink.com/announcement/publication.aspx?name=sap10075"
          },
          {
            "trust": 0.8,
            "url": "http://www.dell.com/support/article/sln307822"
          },
          {
            "trust": 0.8,
            "url": "https://github.com/espressif/esp8266_nonos_sdk"
          },
          {
            "trust": 0.8,
            "url": "https://extremeportal.force.com/extrarticledetail?n=000018005"
          },
          {
            "trust": 0.8,
            "url": "https://bodhi.fedoraproject.org/updates/fedora-2017-60bfb576b7"
          },
          {
            "trust": 0.8,
            "url": "http://www.fortiguard.com/psirt/fg-ir-17-196"
          },
          {
            "trust": 0.8,
            "url": "https://www.freebsd.org/security/advisories/freebsd-sa-17:07.wpa.asc"
          },
          {
            "trust": 0.8,
            "url": "https://bugs.gentoo.org/634440"
          },
          {
            "trust": 0.8,
            "url": "https://support.hpe.com/hpsc/doc/public/display?sp4ts.oid=null\u0026doclocale=en_us\u0026docid=emr_na-a00029151en_us"
          },
          {
            "trust": 0.8,
            "url": "https://w1.fi/security/2017-1/"
          },
          {
            "trust": 0.8,
            "url": "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00101\u0026languageid=en-fr"
          },
          {
            "trust": 0.8,
            "url": "https://kb.juniper.net/jsa10827"
          },
          {
            "trust": 0.8,
            "url": "https://support.lenovo.com/ca/en/product_security/len-17420"
          },
          {
            "trust": 0.8,
            "url": "http://www.microchip.com/wwwproducts/en/atwinc1500"
          },
          {
            "trust": 0.8,
            "url": "http://mail-index.netbsd.org/source-changes/2017/10/16/msg088877.html"
          },
          {
            "trust": 0.8,
            "url": "https://kb.netgear.com/000049498/security-advisory-for-wpa-2-vulnerabilities-psv-2017-2826-psv-2017-2836-psv-2017-2837"
          },
          {
            "trust": 0.8,
            "url": "https://forum.peplink.com/t/security-advisory-wpa2-vulnerability-vu-228519/12715"
          },
          {
            "trust": 0.8,
            "url": "https://ruckus-www.s3.amazonaws.com/pdf/security/faq-security-advisory-id-101617-v1.0.pdf"
          },
          {
            "trust": 0.8,
            "url": "https://www.suse.com/de-de/support/kb/doc/?id=7022107"
          },
          {
            "trust": 0.8,
            "url": "https://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/sierra-wireless-technical-bulletin---wpa-and-wpa2-vulnerabilities/"
          },
          {
            "trust": 0.8,
            "url": "http://www.slackware.com/changelog/stable.php?cpu=x86_64"
          },
          {
            "trust": 0.8,
            "url": "https://community.sophos.com/kb/en-us/127658"
          },
          {
            "trust": 0.8,
            "url": "https://www.toshibacommerce.com/wps/myportal/%21ut/p/a1/rzrnc8igeiz_sw8egqhjcdmmwr8abw2dqcnfoyqotidrrk399uxrrwotuzgws7a87y6z88iuzmcq2u4uwcnlzypjnjj5-exr_wnhya-laxtrid-j3uchdtb8gylmuw6qzgktovtowsrrqlrs6-8dbeqhwc1mykqnlabgdjlf1yjvn7i5af4qtdwsn2tri7j"
          },
          {
            "trust": 0.8,
            "url": "http://www.toshiba-personalstorage.net/en/news/hdd/ot_notice/20171017.htm"
          },
          {
            "trust": 0.8,
            "url": "http://support.toshiba.com/support/staticcontentdetail?contentid=4015875\u0026isfromtoclink=false"
          },
          {
            "trust": 0.8,
            "url": "https://community.ubnt.com/t5/unifi-updates-blog/firmware-3-9-3-7537-for-uap-usw-has-been-released/ba-p/2099365"
          },
          {
            "trust": 0.8,
            "url": "https://usn.ubuntu.com/usn/usn-3455-1/"
          },
          {
            "trust": 0.8,
            "url": "http://en.miui.com/thread-954223-1-1.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.zebra.com/content/dam/zebra_new_ia/en-us/support-and-downloads/lifeguard-security/krack-security-bulletin.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://www.zyxel.com/support/announcement_wpa2_key_management.shtml"
          },
          {
            "trust": 0.8,
            "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventsubmit_dogoviewsolutiondetails=\u0026solutionid=sk120938"
          },
          {
            "trust": 0.8,
            "url": "https://community.rsa.com/docs/doc-84103"
          },
          {
            "trust": 0.8,
            "url": "https://support.f5.com/csp/article/k23642330"
          },
          {
            "trust": 0.8,
            "url": "https://forum.mikrotik.com/viewtopic.php?f=21\u0026t=126695"
          },
          {
            "trust": 0.8,
            "url": "https://community.linksys.com/t5/wireless-routers/krack-vulnerability/td-p/1218573"
          },
          {
            "trust": 0.6,
            "url": "https://www.kb.cert.org/vuls/id/228519/"
          },
          {
            "trust": 0.6,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.6,
            "url": "https://support.apple.com/kb/ht201222"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2020.3967/"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2020.4125/"
          },
          {
            "trust": 0.6,
            "url": "https://support.lenovo.com/us/en/product_security/len-45682"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13804"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13799"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13849"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13077"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13078"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13795"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13783"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13803"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13791"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13788"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13784"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13796"
          },
          {
            "trust": 0.2,
            "url": "https://www.apple.com/itunes/"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13792"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13785"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13798"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13802"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13793"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13794"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13865"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13868"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13876"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13862"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13869"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13833"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13861"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13867"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13855"
          },
          {
            "trust": 0.2,
            "url": "https://www.pgp.com"
          },
          {
            "trust": 0.2,
            "url": "https://portal.msrc.microsoft.com/en-us/security-guidance"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13081"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/330.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/3505-1/"
          },
          {
            "trust": 0.1,
            "url": "https://ics-cert.us-cert.gov/advisories/icsma-18-114-01"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-7113"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13844"
          },
          {
            "trust": 0.1,
            "url": "https://nmap.org/mailman/listinfo/fulldisclosure"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13805"
          },
          {
            "trust": 0.1,
            "url": "http://seclists.org/fulldisclosure/"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/downloads/"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht208038"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13866"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-7156"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13856"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13870"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-7157"
          },
          {
            "trust": 0.1,
            "url": "http://www.microsoft.com/info/legalinfo/default.mspx\u003e."
          },
          {
            "trust": 0.1,
            "url": "http://go.microsoft.com/fwlink/?linkid=81184\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://support.microsoft.com/"
          },
          {
            "trust": 0.1,
            "url": "https://technet.microsoft.com/security/dn753714\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://profile.microsoft.com/regsysprofilecenter/subscriptionwizar"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-firmware/1.169.1"
          },
          {
            "trust": 0.1,
            "url": "https://www.ubuntu.com/usn/usn-3505-1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-firmware/1.164.2"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-firmware/1.157.14"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-firmware/1.127.24"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-16995"
          },
          {
            "trust": 0.1,
            "url": "https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13847"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13860"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13879"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13874"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht204641"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13078"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13080"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13082"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13077"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13087"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13081"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13084"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/gpg-key"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13086"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13082"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13087"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13086"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13088"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13079"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13079"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13088"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13084"
          },
          {
            "trust": 0.1,
            "url": "http://osuosl.org)"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#228519"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403"
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080"
          },
          {
            "db": "PACKETSTORM",
            "id": "144860"
          },
          {
            "db": "PACKETSTORM",
            "id": "145394"
          },
          {
            "db": "PACKETSTORM",
            "id": "148445"
          },
          {
            "db": "PACKETSTORM",
            "id": "144828"
          },
          {
            "db": "PACKETSTORM",
            "id": "145430"
          },
          {
            "db": "PACKETSTORM",
            "id": "144666"
          },
          {
            "db": "PACKETSTORM",
            "id": "145228"
          },
          {
            "db": "PACKETSTORM",
            "id": "144636"
          },
          {
            "db": "PACKETSTORM",
            "id": "147010"
          },
          {
            "db": "PACKETSTORM",
            "id": "145271"
          },
          {
            "db": "PACKETSTORM",
            "id": "144829"
          },
          {
            "db": "PACKETSTORM",
            "id": "144663"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          },
          {
            "db": "NVD",
            "id": "CVE-2017-13080"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#228519",
            "ident": null
          },
          {
            "db": "CNVD",
            "id": "CNVD-2017-30403",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2017-13080",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "144860",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "145394",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "148445",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "144828",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "145430",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "144666",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "145228",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "144636",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147010",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "145271",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "144829",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "144663",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2017-13080",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2017-10-17T00:00:00",
            "db": "IVD",
            "id": "52cda2a8-8175-413f-97bb-cf2e4c75f7c4",
            "ident": null
          },
          {
            "date": "2017-10-16T00:00:00",
            "db": "CERT/CC",
            "id": "VU#228519",
            "ident": null
          },
          {
            "date": "2017-10-18T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2017-30403",
            "ident": null
          },
          {
            "date": "2017-10-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2017-13080",
            "ident": null
          },
          {
            "date": "2017-11-02T23:31:30",
            "db": "PACKETSTORM",
            "id": "144860",
            "ident": null
          },
          {
            "date": "2017-12-13T03:33:33",
            "db": "PACKETSTORM",
            "id": "145394",
            "ident": null
          },
          {
            "date": "2018-07-05T23:02:22",
            "db": "PACKETSTORM",
            "id": "148445",
            "ident": null
          },
          {
            "date": "2017-11-01T15:44:40",
            "db": "PACKETSTORM",
            "id": "144828",
            "ident": null
          },
          {
            "date": "2017-12-15T04:44:44",
            "db": "PACKETSTORM",
            "id": "145430",
            "ident": null
          },
          {
            "date": "2017-10-18T10:11:11",
            "db": "PACKETSTORM",
            "id": "144666",
            "ident": null
          },
          {
            "date": "2017-12-06T22:22:00",
            "db": "PACKETSTORM",
            "id": "145228",
            "ident": null
          },
          {
            "date": "2017-10-16T15:02:22",
            "db": "PACKETSTORM",
            "id": "144636",
            "ident": null
          },
          {
            "date": "2018-04-02T20:22:22",
            "db": "PACKETSTORM",
            "id": "147010",
            "ident": null
          },
          {
            "date": "2017-12-08T14:44:44",
            "db": "PACKETSTORM",
            "id": "145271",
            "ident": null
          },
          {
            "date": "2017-11-01T15:46:36",
            "db": "PACKETSTORM",
            "id": "144829",
            "ident": null
          },
          {
            "date": "2017-10-18T20:44:00",
            "db": "PACKETSTORM",
            "id": "144663",
            "ident": null
          },
          {
            "date": "2017-10-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201710-383",
            "ident": null
          },
          {
            "date": "2017-10-17T13:29:00.397000",
            "db": "NVD",
            "id": "CVE-2017-13080",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2017-11-16T00:00:00",
            "db": "CERT/CC",
            "id": "VU#228519",
            "ident": null
          },
          {
            "date": "2017-10-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2017-30403",
            "ident": null
          },
          {
            "date": "2020-11-10T00:00:00",
            "db": "VULMON",
            "id": "CVE-2017-13080",
            "ident": null
          },
          {
            "date": "2021-12-06T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201710-383",
            "ident": null
          },
          {
            "date": "2025-04-20T01:37:25.860000",
            "db": "NVD",
            "id": "CVE-2017-13080",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote or local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Wi-Fi Protected Access (WPA) handshake traffic can be manipulated to induce nonce and session key reuse",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#228519"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "security feature problem",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201710-383"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201406-0445

    Vulnerability from variot - Updated: 2026-04-10 23:23

    OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability. OpenSSL is vulnerable to a man-in-the-middle attack. An attacker can exploit this issue to crash the affected application, denying service to legitimate users.

    HP IceWall SSO Dfw and MCRP

    If possible, do not use SHOST setting which allows IceWall SSO Dfw or MCRP to use SSL/TLS for back-end web server connection.

    HP IceWall SSO Dfw Certd

    If possible, set LDAPSSL to 0 to make HP SSO IceWall Certd to not use SSL/TLS on any connection with LDAP server.

    References: CVE-2014-0224, SSRT101656

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP BladeSystem c-Class Virtual Connect Firmware prior to v4.30.

    HP BladeSystem c-Class Virtual Connect Firmware v4.30 is available at the following download location:

    http://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/psi/swdDetail s/?javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTo k=com.vignette.cachetoken&javax.portlet.prp_bd9b6997fbc7fc515f4cf4626f5c8d01= wsrp-navigationalState%3Didx%253D%257CswItem%253DMTX_52c1d36ae30d4630bbf60592 ab%257CswEnvOID%253D2078%257CitemLocale%253D%257CswLang%253D%257Cmode%253D%25 7Caction%253DdriverDocument&javax.portlet.tpst=bd9b6997fbc7fc515f4cf4626f5c8d 01&sp4ts.oid=3884114&ac.admitted=1406807633194.876444892.199480143

    NOTE: The Virtual Connect Manager software is an OpenSSL client when it communicates with Onboard Administrator, Virtual Connect Fiber Channel modules, and LDAP servers. There is no plan to update either Virtual Connect v3.61 or v4.01. Please ensure that all LDAP servers with which these products communicate are secure and that the latest version of Onboard Administrator is installed. The Virtual Connect Fiber Channel module does not have a vulnerable OpenSSL server. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04378799

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c04378799 Version: 1

    HPSBMU03074 rev.1 - HP Insight Control server migration on Linux and Windows running OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized Access, Disclosure of Information

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2014-07-23 Last Updated: 2014-07-23

    Potential Security Impact: Remote denial of service (DoS), code execution, unauthorized access, disclosure of information

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Insight Control server migration running on Linux and Windows which could be exploited remotely resulting in denial of service (DoS), code execution, unauthorized access, or disclosure of information.

    References:

    CVE-2010-5298 Remote Denial of Service CVE-2014-0076 Unauthorized Disclosure of Information CVE-2014-0195 Remote Unauthorized Access CVE-2014-0198 Remote Denial of Service CVE-2014-0221 Remote Denial of Service (DoS) CVE-2014-0224 Remote Unauthorized Access or Disclosure of Information CVE-2014-3470 Remote Code Execution or Unauthorized Access SSRT101647

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Insight Control server migration v7.2.2, v7.3, v7.3.1, and v7.3.2

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2010-5298 (AV:N/AC:H/Au:N/C:N/I:P/A:P) 4.0 CVE-2014-0076 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2014-0195 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2014-0198 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2014-0221 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2014-0224 (AV:N/AC:M/Au:N/C:P/I:P/A:P) 6.8 CVE-2014-3470 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has provided the following updates to v7.3.2 of HP Insight Control server migration to resolve these vulnerabilities by upgrading to version 7.3.3. Please note that version 7.3.3 of HP Insight Control server migration is included on the HP Insight Management 7.3 Update 2 DVD.

    HP has provided the installation binaries for download from the following web site by using the Receive for free option:

    http://h18013.www1.hp.com/products/servers/management/fpdownload.html

    Customers using HP Insight Control server migration v7.2.2 must first upgrade from v7.2.2 to v7.3 by using the HP Insight Management v7.3 DVD, and then upgrade to v7.3.3 by using the HP Insight Management v7.3 Update 2 DVD.

    Customers running HP Insight Control server migration v7.3, v7.3.1, or v7.3.2, can use the HP Insight Control server migration v7.3 Update 2 DVD to complete the upgrade.

    For more information on the upgrade process, please refer to the HP Insight Management Installation and Upgrade Guide and Release notes, which are available at the following location:

    http://h17007.www1.hp.com/us/en/enterprise/servers/solutions/info-library/ind ex.aspx?cat=insightmanagement

    NOTE: The upgrade paths described above update the entire HP Insight Control software stack. To upgrade HP Insight Control server migration only, complete the following steps:

    Copy "hpsmp.exe" to the local machine from the HP Insight Management v7.3.0 Update 2 DVD ISO. Create batch file with the following commands: @echo off hpsmp.exe /verysilent /SVCPATCH=Install_Through_Patch Copy the batch file to the folder where "hpsmp.exe" normally resides on the target system. Double click on the batch file. The HP Insight Control server migration installation starts in a command prompt. The command prompt closes when the installation finishes. After the installation completes it creates a log file (ICmigr.log) and an output file (ICmigroutput.xml) on the target system. Do not close or click on the command prompt while the process is completing. Do not run the command prompt in the background.

    HISTORY Version:1 (rev.1) - 23 July 2014 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2014 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux)

    iEYEARECAAYFAlPPv38ACgkQ4B86/C0qfVmWsACgvg3ZBSYc1uQDUvMq71r7LLsR ZUUAnjwnaUdNhtgUmVoIOUaKjKyQIHsM =pNB+ -----END PGP SIGNATURE----- . HP System Management Homepage versions 7.3.2 and earlier for Linux and Windows. HP System Management Homepage v7.2.4.1 is available for Windows 2003 only.

    HP System Management Homepage v7.2.4.1 for Windows x86: http://www.hp.com/swpublishing/MTX-d775367b0a28449ca05660778b ftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p11160892/v98702

    HP System Management Homepage v7.2.4.1 for Windows x64: http://www.hp.com/swpublishing/MTX-3a7aa5e233904ebe847a5e1555 ftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p221526337/v98704

    HP System Management Homepage v7.3.3.1 for Windows x86: http://www.hp.com/swpublishing/MTX-3395d737d98f42149125b9bb05 ftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p11160892/v98696

    HP System Management Homepage v7.3.3.1 for Windows x64: http://www.hp.com/swpublishing/MTX-e8076c2a35804685ad65b2b1ba ftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p221526337/v98698

    HP System Management Homepage v7.3.3.1 for Linux x86: http://www.hp.com/swpublishing/MTX-511c3e0b2f6f4f6bbc796fc619 ftp://ftp.hp.com/pub/softlib2/software1/pubsw-linux/p1980463820/v98694

    HP System Management Homepage v7.3.3.1 for Linux x64: http://www.hp.com/swpublishing/MTX-bd9a1cf60e344c549c4888db93 ftp://ftp.hp.com/pub/softlib2/software1/pubsw-linux/p1507410135/v98693

    NOTE: HP System Management Homepage v7.3.3.1 for Linux x86 still contains OpenSSL v1.0.0d. As long as all other products which SMH V7.3.3.1 for Linux x86 communicates with have been upgraded to the latest versions, it will not be vulnerable to the exploits described in CVE-2014-0224. OpenSSL is a 3rd party product that is embedded with some HP Software products. This bulletin notifies HP Software customers about products affected by this OpenSSL vulnerability. The impacted products appear in the list below are vulnerable due to embedding of OpenSSL standard release software.

    HP Asset Manager / CloudSystem Chargeback v9.40 Install patch v9.40.P4

    For Windows(en) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00376

    For Windows(de) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00377

    For Windows(es) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00378

    For Windows(fr) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00379

    For Windows(it) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00380

    For Windows(ja) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00381

    For Windows(ko) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00382

    For Windows(nl) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00383

    For Windows(pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00384

    For Windows(ru) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00385

    For Windows(zh) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00386

    For Linux(en) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00387

    For Linux(de) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00388

    For Linux(es) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00389

    For Linux(fr) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00390

    For Linux(it) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00391

    For Linux(ja) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00392

    For Linux(ko) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00393

    For Linux(nl) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00394

    For Linux(pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00395

    For Linux(ru) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00396

    For Linux(zh) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00397

    HP Asset Manager v9.41 Install patch v9.41.P1

    For Windows(en) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00423

    For windows(de) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00424

    For Windows(es) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00425

    For Windows(fr) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00426

    For Windows(it) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00427

    For Windows(ja) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00428

    For Windows(ko) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00429

    For Windows(nl) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00430

    For Windows(pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00431

    For Windows(ru) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00432

    For Windows(zh) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00433

    For Linux(en) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00434

    For Linux(de) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00435

    For Linux(es) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00436

    For Linux(fr) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00437

    For Linux(it) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00438

    For Linux(ja) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00439

    For Linux(ko) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00440

    For Linux(nl) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00441

    For Linux(pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00442

    For Linux(ru) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00443

    For Linux(zh) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00444

    HP Asset Manager v9.3x Install patch v9.32.P2

    For Windows(en) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00398

    For Windows(de) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00399

    For Windows(es) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00400

    For Windows(fr) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00401

    For Windows(it) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00402

    For Windows(ja) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00403

    For Windows(ko) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00404

    For Windows(nl) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00405

    For Windows(pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00406

    For Windows(ru) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00407

    For Windows(zh) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00408

    For Linux(en) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00409

    For Linux (de) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00410

    For Linux (es) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00411

    For Linux (fr) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00412

    For Linux (it) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00413

    For Linux (ja) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00414

    For Linux (ko) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00415

    For Linux (nl) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00416

    For Linux (pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00417

    For Linux (ru) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00418

    For Linux (zh) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00419

    For AIX ANSI (en de es fr it nl pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00420

    For HPUX ANSI (en de es fr it nl pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00421

    For Solaris ANSI (en de es fr it nl pt) http://support.openview.hp.com/selfsolve/document/LID/AMGR_00422

    HP Asset Manager v5.2x upgrade to v9.41.P1

    HISTORY Version:1 (rev.1) - 19 August 2014 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities

    EMC Identifier: ESA-2014-079

    CVE Identifier: See below for individual CVEs

    Severity Rating: CVSS v2 Base Score: See below for individual CVSS score for each CVE

    Affected products:
    \x95 All EMC Documentum Content Server versions of 7.1 prior to P07 \x95 All EMC Documentum Content Server versions of 7.0 \x95 All EMC Documentum Content Server versions of 6.7 SP2 prior to P16 \x95 All EMC Documentum Content Server versions of 6.7 SP1 \x95 All EMC Documentum Content Server versions prior to 6.7 SP1

    Summary:
    EMC Documentum Content Server contains fixes for multiple vulnerabilities which also include vulnerabilities disclosed by the OpenSSL project on June 5, 2014 in OpenSSL.

    Details: EMC Documentum Content Server may be susceptible to the following vulnerabilities:

    \x95 Arbitrary Code Execution (CVE-2014-4618): Authenticated non-privileged users can potentially execute Documentum methods with higher level privileges (up to and including superuser privileges) due to improper authorization checks being performed on user-created system objects. CVSS v2 Base Score: 8.2 (AV:N/AC:M/Au:S/C:C/I:C/A:P)

    \x95 DQL Injection (CVE-2014-2520): Certain DQL hints in EMC Documentum Content Server may be potentially exploited by an authenticated non-privileged malicious user to conduct DQL injection attacks and read the database contents. This issue only affects Content Server running on Oracle database. CVSS v2 Base Score: 6.3 (AV:N/AC:M/Au:S/C:C/I:N/A:N)

    \x95 Information Disclosure (CVE-2014-2521): Authenticated non-privileged users are allowed to retrieve meta-data of unauthorized system objects due to improper authorization checks being performed on certain RPC commands in Content Server. CVSS v2 Base Score: 6.3 (AV:N/AC:M/Au:S/C:C/I:N/A:N)

    \x95 Multiple OpenSSL vulnerabilities (See individual CVEs below and refer to NVD for each of their scores): SSL/TLS Man-in-the-middle (MITM) vulnerability (CVE-2014-0224) DTLS recursion flaw (CVE-2014-0221) DTLS invalid fragment vulnerability (CVE-2014-0195) SSL_MODE_RELEASE_BUFFERS NULL pointer deference (CVE-2014-0198) SSL_MODE_RELEASE_BUFFERS session injection or denial of service (CVE-2010-5298) Anonymous ECDH denial of service (CVE-2014-3470) FLUSH + RELOAD cache side-channel attack (CVE-2014-0076) For more information about these vulnerabilities, please visit the original OpenSSL advisory https://www.openssl.org/news/secadv_20140605.txt

    Resolution: The following versions contain the resolution for these issues: \x95 EMC Documentum Content Server version 7.1 P07 and later \x95 EMC Documentum Content Server version 7.0: Hotfixes are available for Windows & Linux. Contact EMC Support to obtain them. For Solaris and AIX, contact EMC Support to open Hotfix requests. \x95 EMC Documentum Content Server version 6.7 SP2 P16 and later \x95 EMC Documentum Content Server version 6.7 SP1: Hotfixes are available for Windows & Linux. Contact EMC Support to obtain them. For Solaris and AIX, contact EMC Support to open Hotfix requests.

    EMC recommends all customers to upgrade to one of the above versions at the earliest opportunity.

    Link to remedies: Registered EMC Online Support customers can download patches and software from support.emc.com at: https://support.emc.com/downloads/2732_Documentum-Server

    For Hotfix, contact EMC Support.

    Read and use the information in this EMC Security Advisory to assist in avoiding any situation that might arise from the problems described herein. If you have any questions regarding this product alert, contact EMC Software Technical Support at 1-877-534-2867.

    For an explanation of Severity Ratings, refer to EMC Knowledgebase solution emc218831. EMC recommends all customers take into account both the base score and any relevant temporal and environmental scores which may impact the potential severity associated with particular security vulnerability.

    EMC Corporation distributes EMC Security Advisories, in order to bring to the attention of users of the affected EMC products, important security information. EMC recommends that all users determine the applicability of this information to their individual situations and take appropriate action. EMC disclaims all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply.

    • Go to the HP Software Depot site at http://www.software.hp.com and search for "HP OneView". -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: Red Hat JBoss Enterprise Application Platform 5.2.0 security update Advisory ID: RHSA-2014:0630-01 Product: Red Hat JBoss Enterprise Application Platform Advisory URL: https://rhn.redhat.com/errata/RHSA-2014-0630.html Issue date: 2014-06-05 CVE Names: CVE-2014-0224 =====================================================================

    1. Summary:

    An update for Red Hat JBoss Enterprise Application Platform 5.2.0 that fixes one security issue is now available from the Red Hat Customer Portal.

    The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

    1. Description:

    Red Hat JBoss Enterprise Application Platform is a platform for Java applications, which integrates the JBoss Application Server with JBoss Hibernate and JBoss Seam.

    OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a full-strength, general purpose cryptography library.

    It was found that OpenSSL clients and servers could be forced, via a specially crafted handshake packet, to use weak keying material for communication. A man-in-the-middle attacker could use this flaw to decrypt and modify traffic between a client and a server. (CVE-2014-0224)

    Note: In order to exploit this flaw, both the server and the client must be using a vulnerable version of OpenSSL; the server must be using OpenSSL version 1.0.1 and above, and the client must be using any version of OpenSSL. Red Hat JBoss Enterprise Application Platform includes OpenSSL 0.9.8e, so this flaw is only exploitable when OpenSSL in JBoss EAP is used as a client, communicating with a vulnerable server running OpenSSL version 1.0.1 and above. For more information about this flaw, refer to: https://access.redhat.com/site/articles/904433

    Red Hat would like to thank the OpenSSL project for reporting this issue. Upstream acknowledges KIKUCHI Masashi of Lepidum as the original reporter of this issue.

    All users of Red Hat JBoss Enterprise Application Platform 5.2.0 as provided from the Red Hat Customer Portal are advised to apply this update. The JBoss server process must be restarted for this update to take effect.

    1. Solution:

    The References section of this erratum contains a download link (you must log in to download the update). Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications (including all applications and configuration files).

    1. References:

    https://www.redhat.com/security/data/cve/CVE-2014-0224.html https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/site/articles/904433 https://access.redhat.com/site/solutions/906533 https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=5.2.0

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2014 Red Hat, Inc

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0m"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8za"
          },
          {
            "_id": null,
            "model": "jboss enterprise web server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "mariadb",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "mariadb",
            "version": "10.0.13"
          },
          {
            "_id": null,
            "model": "python",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "python",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "jboss enterprise application platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.2.0"
          },
          {
            "_id": null,
            "model": "cp1543-1",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.1.25"
          },
          {
            "_id": null,
            "model": "mariadb",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "mariadb",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "python",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "python",
            "version": "3.4.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "jboss enterprise web platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.2.0"
          },
          {
            "_id": null,
            "model": "jboss enterprise application platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "python",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "python",
            "version": "2.7.8"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "0.10.29"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "python",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "python",
            "version": "3.4.2"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "s7-1500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.6"
          },
          {
            "_id": null,
            "model": "storage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "19"
          },
          {
            "_id": null,
            "model": "server",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "filezilla",
            "version": "0.9.45"
          },
          {
            "_id": null,
            "model": "application processing engine",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "opensuse",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "rox",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.16.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1h"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "20"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "bladecenter advanced management module 3.66e",
            "scope": null,
            "trust": 0.9,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "attachmate",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fedora",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "global associates",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nvidia",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vmware",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0.1916.141"
          },
          {
            "_id": null,
            "model": "tandberg mxp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "8800"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5600v210.1"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "computer telephony integration object server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ace application control engine module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "i v5r3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "proventia network security controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.470"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.1.3"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "9.1-release-p15",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "vpn client v100r001c02spc702",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "api management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "34.0"
          },
          {
            "_id": null,
            "model": "service delivery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "manageone v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "tivoli composite application manager for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed ga level",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.2.0"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "10.0-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.6"
          },
          {
            "_id": null,
            "model": "prime access registrar appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual vsa software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "12.6"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp11",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "x7101"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "agile controller v100r001c00spc200",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0h",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "mds switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smart update manager for linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.3.5"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "tivoli composite application manager for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "telepresence tx series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90000"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "ftp server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cerberus",
            "version": "7.0.0.2"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for apple ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.0.3"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.40"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "updatexpress system packs installer",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.61"
          },
          {
            "_id": null,
            "model": "usg5000 v300r001c10sph201",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8y",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "asg2000 v100r001c10sph001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "wireless lan controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "vsm v200r002c00spc503",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "3.1.4"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.5"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "tandberg codian isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32200"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "s5900 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "documentum content server p05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "jabber video for telepresence",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.5"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5.1"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.0"
          },
          {
            "_id": null,
            "model": "data ontap smi-s agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "10.0-rc3-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.16.1.0.9.8"
          },
          {
            "_id": null,
            "model": "telepresence server on multiparty media",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3200"
          },
          {
            "_id": null,
            "model": "s2750\u0026s5700\u0026s6700 v100r006",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "ssl for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.4-453"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "blackberry enterprise service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "9.2-release-p7",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "advanced settings utility",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.60"
          },
          {
            "_id": null,
            "model": "9.1-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "automation stratix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "rockwell",
            "version": "590015.6.3"
          },
          {
            "_id": null,
            "model": "nexus series fabric extenders",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "20000"
          },
          {
            "_id": null,
            "model": "intelligencecenter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 600gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413012.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "documentum content server p02",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "oncommand workflow automation",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "desktop collaboration experience dx650",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "automation stratix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rockwell",
            "version": "59000"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433511.5"
          },
          {
            "_id": null,
            "model": "telepresence system series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler for applications fp02",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.5"
          },
          {
            "_id": null,
            "model": "storevirtual vsa software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "telepresence ip gateway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "open systems snapvault 3.0.1p6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "smart update manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp13",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "9.3-beta1-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "idp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "tandberg mxp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7700"
          },
          {
            "_id": null,
            "model": "cloudburst",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413012.0"
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "50000"
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.6.6"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ddos secure",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.14.1-1"
          },
          {
            "_id": null,
            "model": "9.3-beta1-p2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "video surveillance series ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "60000"
          },
          {
            "_id": null,
            "model": "vsm v200r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "powervu d9190 comditional access manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "i v5r3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "10.0-release-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.5"
          },
          {
            "_id": null,
            "model": "softco v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "s2700\u0026s3700 v100r006c05+v100r06h",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "storevirtual 4tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "telepresence mcu series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.9.3"
          },
          {
            "_id": null,
            "model": "asg2000 v100r001c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "idp 5.1r4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "nac manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "smc2.0 v100r002c01b017sp17",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "463012.6"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "89450"
          },
          {
            "_id": null,
            "model": "icewall sso dfw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "usg2000 v300r001c10sph201",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.5"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "2.1.5"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "service delivery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "enterprise content management system monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.6"
          },
          {
            "_id": null,
            "model": "ecns600 v100r002c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "espace u19** v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "spa112 2-port phone adapter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "universal small cell series software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70003.4.20"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r005c30spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.5"
          },
          {
            "_id": null,
            "model": "toolscenter suite",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.53"
          },
          {
            "_id": null,
            "model": "unified communications series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5000"
          },
          {
            "_id": null,
            "model": "8.4-release-p12",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "netcool/system service monitor fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.014"
          },
          {
            "_id": null,
            "model": "tivoli management framework",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for apple ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "security information and event management hf11",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "snapdrive for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.12"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for apple ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura experience portal sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "3.1.12"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp9",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "svn2200 v200r001c01hp0001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "project openssl beta3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "usg9500 v300r001c01spc300",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.2"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "open systems snapvault",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "8.4-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "ecns610 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "9.2-release-p8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "proventia network security controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.913"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "espace iad v300r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "telepresence server on virtual machine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "2.1.5-2"
          },
          {
            "_id": null,
            "model": "open systems snapvault",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.6.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r005c30spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "icewall sso dfw r3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.7.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for android",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.0.5"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "2.1.2"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.2"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "tandberg mxp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "9900"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "d9036 modular encoding platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "10.0-rc1-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.0.92743"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.15"
          },
          {
            "_id": null,
            "model": "icewall mcrp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "guardium database activity monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0.1650.59"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8s",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "telepresence serial gateway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "elog v100r003c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ata series analog telephone adaptor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1900"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2.5"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.0.9.8"
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "89610"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "prime lan management solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "7080"
          },
          {
            "_id": null,
            "model": "cms r17ac.h",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.0.10"
          },
          {
            "_id": null,
            "model": "ucs central",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for apple ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.0.5"
          },
          {
            "_id": null,
            "model": "dynamic system analysis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.60"
          },
          {
            "_id": null,
            "model": "s7700\u0026s9700 v200r003",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.3"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "1.0.6"
          },
          {
            "_id": null,
            "model": "proventia network security controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1768"
          },
          {
            "_id": null,
            "model": "nac guest server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "dsr-1000n 1.09.b61",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "unity connection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project metasploit framework",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "metasploit",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "idp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "oceanstor s2200t v100r005c30spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "icewall sso dfw r1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "security enterprise scanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "spa232d multi-line dect ata",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "policy center v100r003c00spc305",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5600v19.7"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11.1.20.5.0"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "ios software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "i v5r4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ios xe software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "tandberg codian isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32400"
          },
          {
            "_id": null,
            "model": "project openssl b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "10.0-release-p5",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "oncommand unified manager core package",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413011.5"
          },
          {
            "_id": null,
            "model": "project openssl k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "storevirtual 2tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "anyconnect secure mobility client for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "dsr-500n 1.09.b61",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "video surveillance series ip camera",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "40000"
          },
          {
            "_id": null,
            "model": "anyconnect secure mobility client for desktop platforms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "filenet system monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "spa510 series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "idp 4.1r3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual vsa software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "usg9500 v200r001c01sph902",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "data ontap smi-s agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.5.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1"
          },
          {
            "_id": null,
            "model": "prime performance manager for sps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "storevirtual 4tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "s7700\u0026s9700 v200r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "87100"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53002.0"
          },
          {
            "_id": null,
            "model": "sterling file gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "s3900 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.0.3"
          },
          {
            "_id": null,
            "model": "unified communications widgets click to call",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "softco v100r003",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence t series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "unified attendant console advanced",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ftp server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cerberus",
            "version": "7.0.0.1"
          },
          {
            "_id": null,
            "model": "proventia network security controller 1.0.3352m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5600v310.1"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10000"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "fastsetup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.11"
          },
          {
            "_id": null,
            "model": "tandberg codian isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32100"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5.1"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "2.1.5-3"
          },
          {
            "_id": null,
            "model": "jabber for ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security information and event management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8n",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.14"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "operations analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.4"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "manageone v100r001c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "s7700\u0026s9700 v100r006",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "s6900 v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "ucs b-series servers",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.6"
          },
          {
            "_id": null,
            "model": "universal small cell series software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "50003.4.2.0"
          },
          {
            "_id": null,
            "model": "cloudburst",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9"
          },
          {
            "_id": null,
            "model": "documentum content server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "storevirtual 4tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "77109.7"
          },
          {
            "_id": null,
            "model": "guardium database activity monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "quantum policy suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "463012.0"
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.6"
          },
          {
            "_id": null,
            "model": "telepresence mxp series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "blackberry enterprise service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.2"
          },
          {
            "_id": null,
            "model": "infosphere balanced warehouse c4000",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "project metasploit framework",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "metasploit",
            "version": "4.9.1"
          },
          {
            "_id": null,
            "model": "smart update manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "telepresence server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70100"
          },
          {
            "_id": null,
            "model": "srg1200\u00262200\u00263200 v100r002c02spc800",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "project openssl beta2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "prime data center network manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "infosphere balanced warehouse d5100",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "cc v200r001c31",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "s12700 v200r005+v200r005hp0",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "xenmobile app controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "2.10"
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.0.10648"
          },
          {
            "_id": null,
            "model": "xenmobile app controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "2.9"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "software development kit",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.6"
          },
          {
            "_id": null,
            "model": "security information and event management hf3",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.1.4"
          },
          {
            "_id": null,
            "model": "documentum content server sp2 p13",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "enterprise server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "icewall sso dfw r2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "agent desktop for cisco unified contact center express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "i v5r4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "smart update manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0.0"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "s2750\u0026s5700\u0026s6700 v200r005+v200r005hp0",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "anyconnect secure mobility client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "documentum content server sp2 p14",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.8.3"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "ecns600 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.2.1"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.3"
          },
          {
            "_id": null,
            "model": "jabber voice for iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "9.3-prerelease",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "unified ip conference phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "88310"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl beta1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "project openssl a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "hardware management console release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v77.8"
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.6.5"
          },
          {
            "_id": null,
            "model": "8.4-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "infosphere balanced warehouse c3000",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473011.5"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.2.0.9"
          },
          {
            "_id": null,
            "model": "puredata system for operational analytics a1791",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "dsm v100r002c05spc615",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8t",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "hosted collaboration mediation fulfillment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "icewall sso certd r3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "storevirtual vsa software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "12.5"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "data ontap smi-s agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "ace application control engine module ace20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "hyperdp oceanstor n8500 v200r001c09",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "agent desktop for cisco unified contact center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "11000"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "hyperdp v200r001c91spc201",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "unified attendant console",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "dsr-500 1.09.b61",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "s3900 v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "storevirtual 2tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "ace application control engine module ace10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5600v110.1"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp07",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "smart update manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "manageone v100r002c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "463011.5"
          },
          {
            "_id": null,
            "model": "esight-ewl v300r001c10spc300",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "ave2000 v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge clients for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "7080"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp02",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "telepresence integrator c series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "8.4-prerelease",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473011.5"
          },
          {
            "_id": null,
            "model": "usg9300 v200r001c01sph902",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl beta1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "anyoffice v200r002c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "digital media players series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "43000"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "60000"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "13.10"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "9.1-release-p6",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "snapdrive for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "usg9500 usg9500 v300r001c20",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "espace u2990 v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "telepresence isdn gw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "32410"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "telepresence ex series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473011.5"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005c30spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "manageone v100r001c02 spc901",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "security information and event management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "isoc v200r001c02spc202",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "storevirtual 2tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "9.2-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "ons series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "154000"
          },
          {
            "_id": null,
            "model": "unified intelligent contact management enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "anyconnect secure mobility client for ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "9.1-release-p14",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3"
          },
          {
            "_id": null,
            "model": "aura system manager sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "policy center v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "colorqube ps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "88704.76.0"
          },
          {
            "_id": null,
            "model": "updatexpress system packs installer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.60"
          },
          {
            "_id": null,
            "model": "video surveillance 4300e/4500e high-definition ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smart update manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.4.1"
          },
          {
            "_id": null,
            "model": "jabber video for ipad",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for apple ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.0.6"
          },
          {
            "_id": null,
            "model": "tivoli composite application manager for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.5"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.2"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "webex connect client for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "cognos planning fp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "x7080"
          },
          {
            "_id": null,
            "model": "softco v200r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413012.6"
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "agile controller v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "nip2000\u00265000 v100r002c10hp0001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "tapi service provider",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "telepresence isdn gw mse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "83210"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smc2.0 v100r002c01b017sp16",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "blackberry link",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "physical access gateways",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "session border controller enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "89410"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8u",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "isoc v200r001c01spc101",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "5000"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "prime network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3.1"
          },
          {
            "_id": null,
            "model": "10.0-beta",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "documentum content server p06",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "prime network analysis module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "isoc v200r001c00spc202",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "small business isa500 series integrated security appliances",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.28"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433511.5"
          },
          {
            "_id": null,
            "model": "systems insight manager 7.3.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "88310"
          },
          {
            "_id": null,
            "model": "9.1-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "idp 4.1r2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "usg9500 usg9500 v300r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "tandberg codian mse model",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "83200"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "uma v200r001c00spc200",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "isoc v200r001c00",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "eupp v100r001c10spc002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8m",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "project openssl j",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "rational application developer for websphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "stunnel",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "stunnel",
            "version": "5.02"
          },
          {
            "_id": null,
            "model": "flex system fc5022",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2.0"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433511.5"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "videoscape anyres live",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "documentum content server p07",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "emc",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "wag310g wireless-g adsl2+ gateway with voip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.6.4"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "jabber for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "unified wireless ip phone series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "29200"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ida pro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hex ray",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "31.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.6"
          },
          {
            "_id": null,
            "model": "upward integration modules for vmware vsphere",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "prime optical for sps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.2"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "icewall sso agent option",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.02007"
          },
          {
            "_id": null,
            "model": "open systems snapvault",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "documentum content server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "smart call home",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oncommand unified manager core package",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "project openssl beta5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "insight control server deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.0"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "ecns610 v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.3"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "documentum content server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0.1025308"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433511.5"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0.1700.99"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.13"
          },
          {
            "_id": null,
            "model": "hardware management console release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v77.9"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "8.4-release-p8",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "colorqube ps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xerox",
            "version": "85704.76.0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "snapdrive for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8m beta1",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8q",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "manageone v100r002c10 spc320",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "svn2200 v200r001c01spc600",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "rational application developer for websphere",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.0.1"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "jabber software development kit",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ssl for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.4-467"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473011.5"
          },
          {
            "_id": null,
            "model": "eupp v100r001c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "13000"
          },
          {
            "_id": null,
            "model": "uma-db v2r1coospc101",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "security information and event management hf6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.2.2"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence exchange system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "usg9300 usg9300 v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "7"
          },
          {
            "_id": null,
            "model": "sterling file gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "oncommand unified manager core package 5.2.1p1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7600-"
          },
          {
            "_id": null,
            "model": "blackberry enterprise service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.3"
          },
          {
            "_id": null,
            "model": "espace u2990 v200r001c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "9.1-release-p7",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "dsr-1000n rev. a1",
            "scope": null,
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "svn5500 v200r001c01spc600",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.2.0.1055"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "snapdrive for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "jabber voice for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "onepk all-in-one vm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "idp 4.2r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "webex meetings server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "8.4-rc1-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "isoc v200r001c02",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "aura system manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "lotus foundations start",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "security information and event management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "10.0-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "ddos secure",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "fortiap",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "0"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler for applications",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "i v5r3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "webex messenger service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "hardware management console release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v77.7"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8x"
          },
          {
            "_id": null,
            "model": "logcenter v200r003c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "dynamic system analysis",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.61"
          },
          {
            "_id": null,
            "model": "telepresence supervisor mse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "80500"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "s7700\u0026s9700 v200r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "application networking manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r005c30spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "webex meetings server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp03",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1h",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "jabber for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.3"
          },
          {
            "_id": null,
            "model": "telepresence video communication server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "3.1.10"
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.0.2354"
          },
          {
            "_id": null,
            "model": "idp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "99710"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "project openssl d",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "ftp server",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cerberus",
            "version": "7.0.0.3"
          },
          {
            "_id": null,
            "model": "ata analog telephone adaptor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1870"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.1"
          },
          {
            "_id": null,
            "model": "expressway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "57100"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "proventia network security controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1209"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "security information and event management ga",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.4.0"
          },
          {
            "_id": null,
            "model": "8.4-beta1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "tsm v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl f",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "2.1.5-1"
          },
          {
            "_id": null,
            "model": "usg9500 v300r001c20sph102",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge clients for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.0.4"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "asa cx context-aware security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "unified im and presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "elog v100r003c01spc503",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "hardware management console release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v77.6"
          },
          {
            "_id": null,
            "model": "telepresence server on multiparty media",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3100"
          },
          {
            "_id": null,
            "model": "s5900 v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "s6900 v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.5"
          },
          {
            "_id": null,
            "model": "storevirtual 3tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "fusionsphere v100r003",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "tsm v100r002c07spc219",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "espace iad v300r002c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "documentum content server sp1 p28",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "prime collaboration provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "10.5"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.0"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1.0.9"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "s2750\u0026s5700\u0026s6700 v200r003",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.0"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "unified series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "79000"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "aura experience portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "hyperdp v200r001c09spc501",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "toolscenter suite",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.52"
          },
          {
            "_id": null,
            "model": "telepresence",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "13100"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0k",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project metasploit framework",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "metasploit",
            "version": "4.9.3"
          },
          {
            "_id": null,
            "model": "usg2000 v300r001c10spc200",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "project metasploit framework",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "metasploit",
            "version": "4.9.2"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413012.5"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "aura system platform sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "10.0-stable",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "epolicy orchestrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "4.6.7"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10500"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "8.4-release-p7",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "operations analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "clustered data ontap antivirus connector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "blackberry enterprise service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.2.0"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "unified contact center express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "svn5500 v200r001c01hp0001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "infosphere master data management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "project openssl beta2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "8.4-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "agent desktop for cisco unified contact center enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence profile series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "espace iad v300r001c07",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413012.5"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "dsr-1000 rev. a1",
            "scope": null,
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.4"
          },
          {
            "_id": null,
            "model": "documentum content server sp2 p16",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "video surveillance series ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30000"
          },
          {
            "_id": null,
            "model": "proactive network operations center",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "algo audit and compliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1.0.2"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "ip video phone e20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "blackberry enterprise service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.2.6"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "project openssl beta3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "mate products",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 4tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "3.1.9"
          },
          {
            "_id": null,
            "model": "srg1200\u00262200\u00263200 v100r002c02hp0001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "56000"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "jabber guest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "8.4-release-p9",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "77009.7"
          },
          {
            "_id": null,
            "model": "web security appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "s2750\u0026s5700\u0026s6700 v200r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "espace u19** v100r001c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "content security management appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "uma v200r001c00spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.6"
          },
          {
            "_id": null,
            "model": "telepresence content server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oceanstor s6800t v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8w",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "digital media players series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "44000"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.5"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge clients for linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "7101"
          },
          {
            "_id": null,
            "model": "tivoli composite application manager for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413012.6"
          },
          {
            "_id": null,
            "model": "ips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "espace usm v100r001 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "oncommand unified manager core package",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp12",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.5"
          },
          {
            "_id": null,
            "model": "nexus switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "31640"
          },
          {
            "_id": null,
            "model": "fusionsphere v100r003c10spc600",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence advanced media gateway series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp03",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.6.0"
          },
          {
            "_id": null,
            "model": "smc2.0 v100r002c01b025sp07",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "s2700\u0026s3700 v100r006",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8r",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "espace cc v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "isoc v200r001c01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "5000"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473011.5"
          },
          {
            "_id": null,
            "model": "project openssl beta4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "esight-ewl v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "hyperdp oceanstor n8500 v200r001c91",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "guardium database activity monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "storevirtual hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.0"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.11"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "9.1-release-p12",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "oic v100r001c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "icewall sso dfw certd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "spa300 series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "upward integration modules for microsoft system center",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8p",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "telepresence isdn link",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.4"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "snapdrive for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "secure access control server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.1"
          },
          {
            "_id": null,
            "model": "virtualization experience media engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "jabber im for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "small cell factory recovery root filesystem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "2.99.4"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "ftp server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cerberus",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "11.4"
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.0"
          },
          {
            "_id": null,
            "model": "espace vtm v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "spa122 ata with router",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual fc 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.6"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "32.0"
          },
          {
            "_id": null,
            "model": "spa525 series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "data ontap smi-s agent",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.4.0.15"
          },
          {
            "_id": null,
            "model": "advanced settings utility",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.52"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8v"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.0"
          },
          {
            "_id": null,
            "model": "oncommand workflow automation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "algo audit and compliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "espace u2980 v100r001c02",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "service delivery manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.4"
          },
          {
            "_id": null,
            "model": "identity service engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "9.2-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "s12700 v200r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "8.4-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp04",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "oceanstor s2200t v100r005",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "s2900 v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5600v39.7"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.10"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "email security appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "nexus series switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70000"
          },
          {
            "_id": null,
            "model": "usg5000 v300r001c10spc200",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual china hybrid san solution",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433512.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.9"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.5.1"
          },
          {
            "_id": null,
            "model": "stunnel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stunnel",
            "version": "5.00"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.0"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.5.0.15"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "s5900 v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "esight v2r3c10spc201",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "insight control server deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "video surveillance series ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70000"
          },
          {
            "_id": null,
            "model": "project openssl h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "s3900 v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "adaptive security appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "anyoffice emm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "huawei",
            "version": "2.6.0601.0090"
          },
          {
            "_id": null,
            "model": "project openssl i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.12"
          },
          {
            "_id": null,
            "model": "ssl for openvms",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.4-476"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0i",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "i v5r4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "storevirtual 1tb mdl china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "usg9500 usg9500 v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "tssc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "s2750\u0026s5700\u0026s6700 v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "prime network services controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "oic v100r001c00spc402",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "documentum content server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "icewall sso dfw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "s7700\u0026s9700 v200r005+v200r005hp0",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1x8664"
          },
          {
            "_id": null,
            "model": "dsr-1000 1.09.b61",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "vios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.10"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "1.0.4"
          },
          {
            "_id": null,
            "model": "insight control server deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "vtm v100r001c30",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "oceanstor s5500t v100r005c30spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.4.1"
          },
          {
            "_id": null,
            "model": "storevirtual 2tb mdl sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.5"
          },
          {
            "_id": null,
            "model": "unified ip phone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "99510"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.6"
          },
          {
            "_id": null,
            "model": "insight control server deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "espace u2980 v100r001 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "cloudburst",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp8",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "8.4-rc2-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "idp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "spa500 series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "20500"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.1.5.2"
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.0.1880"
          },
          {
            "_id": null,
            "model": "8.4-stable",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence ip vcr series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "telepresence sx series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "documentum content server sp1 p26",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "18.0"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0j",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "eupp v100r001c01spc101",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "ecns600 v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.6"
          },
          {
            "_id": null,
            "model": "oceanstor s2600t v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "ssl for openvms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.4-471"
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "smart analytics system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5600v29.7"
          },
          {
            "_id": null,
            "model": "security information and event management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "aura presence services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453012.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "ave2000 v100r001c00sph001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.6"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "documentum content server sp2 p15",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "emc",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler for applications fp01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "9.2-release-p5",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "10.0-rc2-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.4.13"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "473012.5"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "463012.5"
          },
          {
            "_id": null,
            "model": "nac appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vpn client v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "metro ethernet series access devices",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12000"
          },
          {
            "_id": null,
            "model": "prime network",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "5"
          },
          {
            "_id": null,
            "model": "blackberry enterprise service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1.0"
          },
          {
            "_id": null,
            "model": "storevirtual 900gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433012.5"
          },
          {
            "_id": null,
            "model": "prime infrastructure",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "ace application control engine appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "stunnel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stunnel",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "tivoli network manager ip edition fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.94"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0m",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "dsr-500n rev. a1",
            "scope": null,
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "ios xr software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "storevirtual 600gb sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "413011.5"
          },
          {
            "_id": null,
            "model": "nip2000\u00265000 v100r002c10spc100",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.8.0"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "33.0.1750.166"
          },
          {
            "_id": null,
            "model": "eupp v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "open source security information management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "dsr-500 rev. a1",
            "scope": null,
            "trust": 0.3,
            "vendor": "d link",
            "version": null
          },
          {
            "_id": null,
            "model": "guardium database activity monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8o",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "blackberry os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rim",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "jabber for mac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "453011.5"
          },
          {
            "_id": null,
            "model": "unified series ip phones",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "69000"
          },
          {
            "_id": null,
            "model": "tivoli netcool/system service monitor fp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "oceanstor s5600t v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "unified communications manager session management edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "video surveillance ptz ip cameras",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "snapdrive for unix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "big-ip edge clients for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "7101"
          },
          {
            "_id": null,
            "model": "9.1-release-p10",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "security module for cisco network registar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "open systems snapvault",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8za",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "storevirtual 450gb sas storage/s-buy",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "500-320"
          },
          {
            "_id": null,
            "model": "chrome for android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "google",
            "version": "35.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "s6900 v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "proventia network security controller 1.0.3350m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge clients for apple ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "dsm v100r002",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence mx series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "insight control server deployment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "css series content services switches",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "115000"
          },
          {
            "_id": null,
            "model": "telepresence system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "500-370"
          },
          {
            "_id": null,
            "model": "tivoli workload scheduler distributed fp04",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "oceanstor s5800t v100r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux desktop workstation client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.3.2.10"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "icewall mcrp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "storevirtual 450gb china sas storage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "433011.5"
          },
          {
            "_id": null,
            "model": "s7700\u0026s9700 v200r001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "9.3-beta1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "espace usm v100r001c01",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          },
          {
            "db": "BID",
            "id": "67901"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0224"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "HP",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "127386"
          },
          {
            "db": "PACKETSTORM",
            "id": "128156"
          },
          {
            "db": "PACKETSTORM",
            "id": "127607"
          },
          {
            "db": "PACKETSTORM",
            "id": "127362"
          },
          {
            "db": "PACKETSTORM",
            "id": "127937"
          },
          {
            "db": "PACKETSTORM",
            "id": "127469"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2014-0224",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2014-0224",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "MEDIUM",
                "accessVector": "ADJACENT NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "NONE",
                "availabilityRequirement": "LOW",
                "baseScore": 6.4,
                "collateralDamagePotential": "HIGH",
                "confidentialityImpact": "COMPLETE",
                "confidentialityRequirement": "HIGH",
                "enviromentalScore": 8.1,
                "exploitability": "PROOF-OF-CONCEPT",
                "exploitabilityScore": 5.5,
                "id": "CVE-2014-0224",
                "impactScore": 7.8,
                "integrityImpact": "PARTIAL",
                "integrityRequirement": "MEDIUM",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "remediationLevel": "OFFICIAL FIX",
                "reportConfidence": "CONFIRMED",
                "severity": "MEDIUM",
                "targetDistribution": "HIGH",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vector_string": "AV:A/AC:M/Au:N/C:C/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 2.2,
                "id": "CVE-2014-0224",
                "impactScore": 5.2,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-0224",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-0224",
                "trust": 0.8,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2014-0224",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0224"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0224"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability. OpenSSL is vulnerable to a man-in-the-middle attack. \nAn attacker can exploit this issue to crash the affected application, denying service to legitimate users. \n\nHP IceWall SSO Dfw and MCRP\n\nIf possible, do not use SHOST setting which allows IceWall SSO Dfw or MCRP to\nuse SSL/TLS for back-end web server connection. \n\nHP IceWall SSO Dfw Certd\n\nIf possible, set LDAPSSL to 0 to make HP SSO IceWall Certd to not use SSL/TLS\non any connection with LDAP server. \n\nReferences: CVE-2014-0224, SSRT101656\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP BladeSystem c-Class Virtual Connect Firmware prior to v4.30. \n\nHP BladeSystem c-Class Virtual Connect Firmware v4.30 is available at the\nfollowing download location:\n\nhttp://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/psi/swdDetail\ns/?javax.portlet.begCacheTok=com.vignette.cachetoken\u0026javax.portlet.endCacheTo\nk=com.vignette.cachetoken\u0026javax.portlet.prp_bd9b6997fbc7fc515f4cf4626f5c8d01=\nwsrp-navigationalState%3Didx%253D%257CswItem%253DMTX_52c1d36ae30d4630bbf60592\nab%257CswEnvOID%253D2078%257CitemLocale%253D%257CswLang%253D%257Cmode%253D%25\n7Caction%253DdriverDocument\u0026javax.portlet.tpst=bd9b6997fbc7fc515f4cf4626f5c8d\n01\u0026sp4ts.oid=3884114\u0026ac.admitted=1406807633194.876444892.199480143\n\nNOTE: The Virtual Connect Manager software is an OpenSSL client when it\ncommunicates with Onboard Administrator, Virtual Connect Fiber Channel\nmodules, and LDAP servers. There is no plan to update either Virtual Connect\nv3.61 or v4.01. Please ensure that\nall LDAP servers with which these products communicate are secure and that\nthe latest version of Onboard Administrator is installed. The Virtual Connect\nFiber Channel module does not have a vulnerable OpenSSL server. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04378799\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04378799\nVersion: 1\n\nHPSBMU03074 rev.1 - HP Insight Control server migration on Linux and Windows\nrunning OpenSSL, Remote Denial of Service (DoS), Code Execution, Unauthorized\nAccess, Disclosure of Information\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2014-07-23\nLast Updated: 2014-07-23\n\nPotential Security Impact: Remote denial of service (DoS), code execution,\nunauthorized access, disclosure of information\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP Insight\nControl server migration running on Linux and Windows which could be\nexploited remotely resulting in denial of service (DoS), code execution,\nunauthorized access, or disclosure of information. \n\nReferences:\n\nCVE-2010-5298 Remote Denial of Service\nCVE-2014-0076 Unauthorized Disclosure of Information\nCVE-2014-0195 Remote Unauthorized Access\nCVE-2014-0198 Remote Denial of Service\nCVE-2014-0221 Remote Denial of Service (DoS)\nCVE-2014-0224 Remote Unauthorized Access or Disclosure of Information\nCVE-2014-3470 Remote Code Execution or Unauthorized Access\nSSRT101647\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Insight Control server migration v7.2.2, v7.3, v7.3.1, and v7.3.2\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2010-5298    (AV:N/AC:H/Au:N/C:N/I:P/A:P)       4.0\nCVE-2014-0076    (AV:N/AC:M/Au:N/C:P/I:N/A:N)       4.3\nCVE-2014-0195    (AV:N/AC:M/Au:N/C:P/I:P/A:P)       6.8\nCVE-2014-0198    (AV:N/AC:M/Au:N/C:N/I:N/A:P)       4.3\nCVE-2014-0221    (AV:N/AC:M/Au:N/C:N/I:N/A:P)       4.3\nCVE-2014-0224    (AV:N/AC:M/Au:N/C:P/I:P/A:P)       6.8\nCVE-2014-3470    (AV:N/AC:M/Au:N/C:N/I:N/A:P)       4.3\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following updates to v7.3.2 of HP Insight Control server\nmigration to resolve these vulnerabilities by upgrading to version 7.3.3. \nPlease note that version 7.3.3 of HP Insight Control server migration is\nincluded on the HP Insight Management 7.3 Update 2 DVD. \n\nHP has provided the installation binaries for download from the following web\nsite by using the Receive for free option:\n\nhttp://h18013.www1.hp.com/products/servers/management/fpdownload.html\n\nCustomers using HP Insight Control server migration v7.2.2 must first upgrade\nfrom v7.2.2 to v7.3 by using the HP Insight Management v7.3 DVD, and then\nupgrade to v7.3.3 by using the HP Insight Management v7.3 Update 2 DVD. \n\nCustomers running HP Insight Control server migration v7.3, v7.3.1, or\nv7.3.2, can use the HP Insight Control server migration v7.3 Update 2 DVD to\ncomplete the upgrade. \n\nFor more information on the upgrade process, please refer to the HP Insight\nManagement Installation and Upgrade Guide and Release notes, which are\navailable at the following location:\n\nhttp://h17007.www1.hp.com/us/en/enterprise/servers/solutions/info-library/ind\nex.aspx?cat=insightmanagement\n\nNOTE: The upgrade paths described above update the entire HP Insight Control\nsoftware stack. To upgrade HP Insight Control server migration only, complete\nthe following steps:\n\nCopy \"hpsmp.exe\" to the local machine from the HP Insight Management v7.3.0\nUpdate 2 DVD ISO. Create batch file with the following commands:\n@echo off\nhpsmp.exe /verysilent /SVCPATCH=Install_Through_Patch\nCopy the batch file to the folder where \"hpsmp.exe\" normally resides on the\ntarget system. \nDouble click on the batch file. \nThe HP Insight Control server migration installation starts in a command\nprompt. \nThe command prompt closes when the installation finishes. \nAfter the installation completes it creates a log file (ICmigr.log) and an\noutput file (ICmigroutput.xml) on the target system. \nDo not close or click on the command prompt while the process is completing. \nDo not run the command prompt in the background. \n\nHISTORY\nVersion:1 (rev.1) - 23 July 2014 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2014 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.13 (GNU/Linux)\n\niEYEARECAAYFAlPPv38ACgkQ4B86/C0qfVmWsACgvg3ZBSYc1uQDUvMq71r7LLsR\nZUUAnjwnaUdNhtgUmVoIOUaKjKyQIHsM\n=pNB+\n-----END PGP SIGNATURE-----\n. \nHP System Management Homepage versions 7.3.2 and earlier for Linux and\nWindows. HP System Management Homepage v7.2.4.1 is available for\nWindows 2003 only. \n\nHP System Management Homepage v7.2.4.1 for Windows x86:\nhttp://www.hp.com/swpublishing/MTX-d775367b0a28449ca05660778b\nftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p11160892/v98702\n\nHP System Management Homepage v7.2.4.1 for Windows x64:\nhttp://www.hp.com/swpublishing/MTX-3a7aa5e233904ebe847a5e1555\nftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p221526337/v98704\n\nHP System Management Homepage v7.3.3.1 for Windows x86:\nhttp://www.hp.com/swpublishing/MTX-3395d737d98f42149125b9bb05\nftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p11160892/v98696\n\nHP System Management Homepage v7.3.3.1 for Windows x64:\nhttp://www.hp.com/swpublishing/MTX-e8076c2a35804685ad65b2b1ba\nftp://ftp.hp.com/pub/softlib2/software1/sc-windows/p221526337/v98698\n\nHP System Management Homepage v7.3.3.1 for Linux x86:\nhttp://www.hp.com/swpublishing/MTX-511c3e0b2f6f4f6bbc796fc619\nftp://ftp.hp.com/pub/softlib2/software1/pubsw-linux/p1980463820/v98694\n\nHP System Management Homepage v7.3.3.1 for Linux x64:\nhttp://www.hp.com/swpublishing/MTX-bd9a1cf60e344c549c4888db93\nftp://ftp.hp.com/pub/softlib2/software1/pubsw-linux/p1507410135/v98693\n\nNOTE: HP System Management Homepage v7.3.3.1 for Linux x86 still contains\nOpenSSL v1.0.0d. As long as all other products which SMH V7.3.3.1 for Linux\nx86 communicates with have been upgraded to the latest versions, it will not\nbe vulnerable to the exploits described in CVE-2014-0224. OpenSSL\nis a 3rd party product that is embedded with some HP Software products. This\nbulletin notifies HP Software customers about products affected by this\nOpenSSL vulnerability. The impacted products appear in the list below\nare vulnerable due to embedding of OpenSSL standard release software. \n\nHP Asset Manager / CloudSystem Chargeback v9.40\n Install patch v9.40.P4\n\nFor Windows(en)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00376\n\nFor Windows(de)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00377\n\nFor Windows(es)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00378\n\nFor Windows(fr)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00379\n\nFor Windows(it)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00380\n\nFor Windows(ja)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00381\n\nFor Windows(ko)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00382\n\nFor Windows(nl)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00383\n\nFor Windows(pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00384\n\nFor Windows(ru)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00385\n\nFor Windows(zh)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00386\n\nFor Linux(en)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00387\n\nFor Linux(de)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00388\n\nFor Linux(es)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00389\n\nFor Linux(fr)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00390\n\nFor Linux(it)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00391\n\nFor Linux(ja)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00392\n\nFor Linux(ko)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00393\n\nFor Linux(nl)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00394\n\nFor Linux(pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00395\n\nFor Linux(ru)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00396\n\nFor Linux(zh)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00397\n\nHP Asset Manager v9.41\n Install patch v9.41.P1\n\nFor Windows(en)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00423\n\nFor windows(de)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00424\n\nFor Windows(es)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00425\n\nFor Windows(fr)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00426\n\nFor Windows(it)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00427\n\nFor Windows(ja)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00428\n\nFor Windows(ko)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00429\n\nFor Windows(nl)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00430\n\nFor Windows(pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00431\n\nFor Windows(ru)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00432\n\nFor Windows(zh)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00433\n\nFor Linux(en)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00434\n\nFor Linux(de)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00435\n\nFor Linux(es)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00436\n\nFor Linux(fr)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00437\n\nFor Linux(it)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00438\n\nFor Linux(ja)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00439\n\nFor Linux(ko)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00440\n\nFor Linux(nl)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00441\n\nFor Linux(pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00442\n\nFor Linux(ru)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00443\n\nFor Linux(zh)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00444\n\nHP Asset Manager v9.3x\n Install patch v9.32.P2\n\nFor Windows(en)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00398\n\nFor Windows(de)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00399\n\nFor Windows(es)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00400\n\nFor Windows(fr)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00401\n\nFor Windows(it)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00402\n\nFor Windows(ja)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00403\n\nFor Windows(ko)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00404\n\nFor Windows(nl)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00405\n\nFor Windows(pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00406\n\nFor Windows(ru)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00407\n\nFor Windows(zh)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00408\n\nFor Linux(en)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00409\n\nFor Linux (de)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00410\n\nFor Linux (es)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00411\n\nFor Linux (fr)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00412\n\nFor Linux (it)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00413\n\nFor Linux (ja)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00414\n\nFor Linux (ko)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00415\n\nFor Linux (nl)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00416\n\nFor Linux (pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00417\n\nFor Linux (ru)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00418\n\nFor Linux (zh)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00419\n\nFor AIX ANSI (en de es fr it nl pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00420\n\nFor HPUX ANSI (en de es fr it nl pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00421\n\nFor Solaris ANSI (en de es fr it nl pt)\n http://support.openview.hp.com/selfsolve/document/LID/AMGR_00422\n\nHP Asset Manager v5.2x\n upgrade to v9.41.P1\n\nHISTORY\nVersion:1 (rev.1) - 19 August 2014 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities \n\nEMC Identifier: ESA-2014-079\n\nCVE Identifier:  See below for individual CVEs\n\nSeverity Rating: CVSS v2 Base Score:  See below for individual CVSS score for each CVE\n\nAffected products:  \n\\x95\tAll EMC Documentum Content Server versions of 7.1 prior to P07\n\\x95\tAll EMC Documentum Content Server versions of 7.0\n\\x95\tAll EMC Documentum Content Server versions of 6.7 SP2 prior to P16\n\\x95\tAll EMC Documentum Content Server versions of 6.7 SP1\n\\x95\tAll EMC Documentum Content Server versions prior to 6.7 SP1\n \nSummary:  \nEMC Documentum Content Server contains fixes for multiple vulnerabilities which also include vulnerabilities disclosed by the OpenSSL project on June 5, 2014 in OpenSSL. \n\nDetails: \nEMC Documentum Content Server may be susceptible to the following vulnerabilities:\n\n\\x95\tArbitrary Code Execution (CVE-2014-4618):\nAuthenticated non-privileged users can potentially execute Documentum methods with higher level privileges (up to and including superuser privileges) due to improper authorization checks being performed on user-created system objects. \nCVSS v2 Base Score: 8.2 (AV:N/AC:M/Au:S/C:C/I:C/A:P)\n\n\\x95\tDQL Injection (CVE-2014-2520):\nCertain DQL hints in EMC Documentum Content Server may be potentially exploited by an authenticated non-privileged malicious user to conduct DQL injection attacks and read the database contents. This issue only affects Content Server running on Oracle database. \nCVSS v2 Base Score: 6.3 (AV:N/AC:M/Au:S/C:C/I:N/A:N)\n\n\\x95\tInformation Disclosure (CVE-2014-2521):\nAuthenticated non-privileged users are allowed to retrieve meta-data of unauthorized system objects due to improper authorization checks being performed on certain RPC commands in Content Server. \nCVSS v2 Base Score: 6.3 (AV:N/AC:M/Au:S/C:C/I:N/A:N)\n\n\\x95\tMultiple OpenSSL vulnerabilities (See individual CVEs below and refer to NVD for each of their scores):\n\tSSL/TLS Man-in-the-middle (MITM) vulnerability (CVE-2014-0224)\n\tDTLS recursion flaw  (CVE-2014-0221)\n\tDTLS invalid fragment vulnerability (CVE-2014-0195)\n\tSSL_MODE_RELEASE_BUFFERS NULL pointer deference  (CVE-2014-0198)\n\tSSL_MODE_RELEASE_BUFFERS session injection or denial of service (CVE-2010-5298)\n\tAnonymous ECDH denial of service (CVE-2014-3470)\n\tFLUSH + RELOAD cache side-channel attack (CVE-2014-0076)\nFor more information about these vulnerabilities, please visit the original OpenSSL advisory https://www.openssl.org/news/secadv_20140605.txt   \n\nResolution: \nThe following versions contain the resolution for these issues: \n\\x95\tEMC Documentum Content Server version 7.1 P07 and later\n\\x95\tEMC Documentum Content Server version 7.0: Hotfixes are available for Windows \u0026 Linux. Contact EMC Support to obtain them. For Solaris and AIX, contact EMC Support to open Hotfix requests. \n\\x95\tEMC Documentum Content Server version 6.7 SP2 P16 and later\n\\x95\tEMC Documentum Content Server version 6.7 SP1: Hotfixes are available for Windows \u0026 Linux. Contact EMC Support to obtain them. For Solaris and AIX, contact EMC Support to open Hotfix requests. \n\nEMC recommends all customers to upgrade to one of the above versions at the earliest opportunity. \n\nLink to remedies:\nRegistered EMC Online Support customers can download patches and software from support.emc.com at: https://support.emc.com/downloads/2732_Documentum-Server\n\nFor Hotfix, contact EMC Support. \n\n\n\nRead and use the information in this EMC Security Advisory to assist in avoiding any situation that might arise from the problems described herein. If you have any questions regarding this product alert, contact EMC Software Technical Support at 1-877-534-2867. \n\nFor an explanation of Severity Ratings, refer to EMC Knowledgebase solution emc218831. EMC recommends all customers take into account both the base score and any relevant temporal and environmental scores which may impact the potential severity associated with particular security vulnerability. \n\nEMC Corporation distributes EMC Security Advisories, in order to bring to the attention of users of the affected EMC products, important security information. EMC recommends that all users determine the applicability of this information to their individual situations and take appropriate action. EMC disclaims all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply. \n\n - Go to the HP Software Depot site at http://www.software.hp.com and search\nfor \"HP OneView\". -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: Red Hat JBoss Enterprise Application Platform 5.2.0 security update\nAdvisory ID:       RHSA-2014:0630-01\nProduct:           Red Hat JBoss Enterprise Application Platform\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2014-0630.html\nIssue date:        2014-06-05\nCVE Names:         CVE-2014-0224 \n=====================================================================\n\n1. Summary:\n\nAn update for Red Hat JBoss Enterprise Application Platform 5.2.0 that\nfixes one security issue is now available from the Red Hat Customer Portal. \n\nThe Red Hat Security Response Team has rated this update as having\nImportant security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from the\nCVE link in the References section. \n\n2. Description:\n\nRed Hat JBoss Enterprise Application Platform is a platform for Java\napplications, which integrates the JBoss Application Server with JBoss\nHibernate and JBoss Seam. \n\nOpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)\nand Transport Layer Security (TLS v1) protocols, as well as a\nfull-strength, general purpose cryptography library. \n\nIt was found that OpenSSL clients and servers could be forced, via a\nspecially crafted handshake packet, to use weak keying material for\ncommunication. A man-in-the-middle attacker could use this flaw to decrypt\nand modify traffic between a client and a server. (CVE-2014-0224)\n\nNote: In order to exploit this flaw, both the server and the client must be\nusing a vulnerable version of OpenSSL; the server must be using OpenSSL\nversion 1.0.1 and above, and the client must be using any version of\nOpenSSL. Red Hat JBoss Enterprise Application Platform includes OpenSSL\n0.9.8e, so this flaw is only exploitable when OpenSSL in JBoss EAP is used\nas a client, communicating with a vulnerable server running OpenSSL version\n1.0.1 and above. For more information about this flaw, refer to:\nhttps://access.redhat.com/site/articles/904433\n\nRed Hat would like to thank the OpenSSL project for reporting this issue. \nUpstream acknowledges KIKUCHI Masashi of Lepidum as the original reporter\nof this issue. \n\nAll users of Red Hat JBoss Enterprise Application Platform 5.2.0 as\nprovided from the Red Hat Customer Portal are advised to apply this update. \nThe JBoss server process must be restarted for this update to take effect. \n\n3. Solution:\n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). Before applying this update, back up your\nexisting Red Hat JBoss Enterprise Application Platform installation and\ndeployed applications (including all applications and configuration files). \n\n4. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2014-0224.html\nhttps://access.redhat.com/security/updates/classification/#important\nhttps://access.redhat.com/site/articles/904433\nhttps://access.redhat.com/site/solutions/906533\nhttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform\u0026downloadType=securityPatches\u0026version=5.2.0\n\n6. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e.  More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2014 Red Hat, Inc",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0224"
          },
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          },
          {
            "db": "BID",
            "id": "67901"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0224"
          },
          {
            "db": "PACKETSTORM",
            "id": "127386"
          },
          {
            "db": "PACKETSTORM",
            "id": "128156"
          },
          {
            "db": "PACKETSTORM",
            "id": "127607"
          },
          {
            "db": "PACKETSTORM",
            "id": "127362"
          },
          {
            "db": "PACKETSTORM",
            "id": "127937"
          },
          {
            "db": "PACKETSTORM",
            "id": "127923"
          },
          {
            "db": "PACKETSTORM",
            "id": "127469"
          },
          {
            "db": "PACKETSTORM",
            "id": "126934"
          }
        ],
        "trust": 2.7
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.kb.cert.org/vuls/id/978508",
            "trust": 0.8,
            "type": "poc"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-0224",
            "trust": 2.2
          },
          {
            "db": "CERT/CC",
            "id": "VU#978508",
            "trust": 1.8
          },
          {
            "db": "MCAFEE",
            "id": "SB10075",
            "trust": 1.3
          },
          {
            "db": "SECUNIA",
            "id": "59827",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59190",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60577",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59004",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59389",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59460",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59364",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59374",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59589",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60567",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59506",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59435",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58977",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59192",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59444",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59449",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59223",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59502",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59325",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59383",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59529",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59784",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59990",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58615",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58639",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "61815",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59530",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59214",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59305",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59167",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59447",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58939",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59429",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59661",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59721",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58742",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58713",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59354",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59490",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59894",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59495",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59063",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59347",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59445",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59659",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59483",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59287",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59380",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59916",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59188",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60571",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59440",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58714",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58945",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59525",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58492",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59264",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59175",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59370",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59163",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58719",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59043",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58433",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59101",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60176",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59162",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60819",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58930",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59142",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59093",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59310",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59375",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58716",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59885",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59451",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59282",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59448",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59040",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59365",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60049",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60066",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58660",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58759",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58745",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59677",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58385",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59300",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59126",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59055",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59446",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59669",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59438",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59441",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59301",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59362",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59655",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59132",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59135",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59211",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59342",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59442",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58579",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59437",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59231",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59459",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "61254",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59191",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59338",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59202",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59491",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59215",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59450",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59666",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59120",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59602",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58743",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59518",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59454",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58667",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58337",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59368",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59824",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "58128",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59306",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59528",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59878",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "60522",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59284",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59514",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59413",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59189",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59186",
            "trust": 1.0
          },
          {
            "db": "SECUNIA",
            "id": "59012",
            "trust": 1.0
          },
          {
            "db": "SECTRACK",
            "id": "1031032",
            "trust": 1.0
          },
          {
            "db": "SECTRACK",
            "id": "1031594",
            "trust": 1.0
          },
          {
            "db": "SIEMENS",
            "id": "SSA-234763",
            "trust": 1.0
          },
          {
            "db": "JUNIPER",
            "id": "JSA10629",
            "trust": 1.0
          },
          {
            "db": "DLINK",
            "id": "SAP10045",
            "trust": 0.3
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-17-094-04",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "67901",
            "trust": 0.3
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0224",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127386",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128156",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127607",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127362",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127937",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127923",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "127469",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126934",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0224"
          },
          {
            "db": "BID",
            "id": "67901"
          },
          {
            "db": "PACKETSTORM",
            "id": "127386"
          },
          {
            "db": "PACKETSTORM",
            "id": "128156"
          },
          {
            "db": "PACKETSTORM",
            "id": "127607"
          },
          {
            "db": "PACKETSTORM",
            "id": "127362"
          },
          {
            "db": "PACKETSTORM",
            "id": "127937"
          },
          {
            "db": "PACKETSTORM",
            "id": "127923"
          },
          {
            "db": "PACKETSTORM",
            "id": "127469"
          },
          {
            "db": "PACKETSTORM",
            "id": "126934"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0224"
          }
        ]
      },
      "id": "VAR-201406-0445",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.41142965368421053
      },
      "last_update_date": "2026-04-10T23:23:58.165000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Amazon Linux AMI: ALAS-2014-351",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-351"
          },
          {
            "title": "HP: SUPPORT COMMUNICATION- SECURITY BULLETIN\nHPSBPI03107 rev.3  -  Certain HP LaserJet Printers, MFPs and Certain HP OfficeJet Enterprise Printers using OpenSSL, Remote Unauthorized Access",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=d0eef6c81e529a1b8e4ea4b72eaef4d0"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2014-350",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-350"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=b92b65104373bc8476811ff1b99cd369"
          },
          {
            "title": "HP: SUPPORT COMMUNICATION- SECURITY BULLETIN\nHPSBPI03107 rev.3  -  Certain HP LaserJet Printers, MFPs and Certain HP OfficeJet Enterprise Printers using OpenSSL, Remote Unauthorized Access",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=a7d1e620ea07a6fd4d3ec24012763337"
          },
          {
            "title": "Red Hat: CVE-2014-0224",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2014-0224"
          },
          {
            "title": "Ubuntu Security Notice: openssl regression",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2232-3"
          },
          {
            "title": "HP: HPSBPI03107 rev.3  -  Certain HP LaserJet Printers, MFPs and Certain HP OfficeJet Enterprise Printers using OpenSSL, Remote Unauthorized Access",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hp_bulletin\u0026qid=HPSBPI03107"
          },
          {
            "title": "Ubuntu Security Notice: openssl vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2232-4"
          },
          {
            "title": "Ubuntu Security Notice: openssl vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2232-1"
          },
          {
            "title": "Ubuntu Security Notice: openssl regression",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2232-2"
          },
          {
            "title": "Debian Security Advisories: DSA-2950-1 openssl -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=909292f2afe623fbec51f7ab6b32f790"
          },
          {
            "title": "Debian CVElist Bug Report Logs: openssl: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=07d14df4883f21063a053cea8d2239c6"
          },
          {
            "title": "Tenable Security Advisories: [R8] Tenable Products Affected by OpenSSL \u0027CCS Injection\u0027 Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2014-03"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2014-349",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-349"
          },
          {
            "title": "Debian CVElist Bug Report Logs: virtualbox: CVE-2014-6588 CVE-2014-6589 CVE-2014-6590 CVE-2014-6595 CVE-2015-0418 CVE-2015-0427",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=eee4d8c3e2b11de5b15ee65d96af6c60"
          },
          {
            "title": "Symantec Security Advisories: SA80 : OpenSSL Security Advisory 05-Jun-2014",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=dd4667746d163d08265dfdd4c98e4201"
          },
          {
            "title": "Citrix Security Bulletins: Citrix Security Advisory for OpenSSL Vulnerabilities (June 2014)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=afbd3a710e98424e558b1b21482abad6"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Live-Hack-CVE/CVE-2014-0224 "
          },
          {
            "title": "crochet-technologies",
            "trust": 0.1,
            "url": "https://github.com/crochet-technology/crochet-technologies "
          },
          {
            "title": "openssl-ccs-cve-2014-0224",
            "trust": 0.1,
            "url": "https://github.com/ssllabs/openssl-ccs-cve-2014-0224 "
          },
          {
            "title": "android-development-best-practices",
            "trust": 0.1,
            "url": "https://github.com/niharika2810/android-development-best-practices "
          },
          {
            "title": "ssl-grader",
            "trust": 0.1,
            "url": "https://github.com/SSLyze410-SSLGrader-wCipherSuite-info/ssl-grader "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/dtarnawsky/capacitor-plugin-security-provider "
          },
          {
            "title": "qualysparser",
            "trust": 0.1,
            "url": "https://github.com/pr4jwal/qualysparser "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Wanderwille/13.01 "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-0224"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-326",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0224"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.0,
            "url": "http://www.openssl.org/news/secadv_20140605.txt"
          },
          {
            "trust": 2.1,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21675821"
          },
          {
            "trust": 1.8,
            "url": "http://www.vmware.com/security/advisories/vmsa-2014-0006.html"
          },
          {
            "trust": 1.3,
            "url": "http://support.citrix.com/article/ctx140876"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678167"
          },
          {
            "trust": 1.3,
            "url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676071"
          },
          {
            "trust": 1.3,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095757"
          },
          {
            "trust": 1.3,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095756"
          },
          {
            "trust": 1.3,
            "url": "https://kb.bluecoat.com/index?page=content\u0026id=sa80"
          },
          {
            "trust": 1.3,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10075"
          },
          {
            "trust": 1.3,
            "url": "http://www.fortiguard.com/advisory/fg-ir-14-018/"
          },
          {
            "trust": 1.3,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20140605-openssl"
          },
          {
            "trust": 1.3,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095755"
          },
          {
            "trust": 1.3,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095754"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683332"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677695"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676879"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676035"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677828"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21673137"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676419"
          },
          {
            "trust": 1.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676062"
          },
          {
            "trust": 1.1,
            "url": "https://rhn.redhat.com/errata/rhsa-2014-0625.html"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0630.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59120"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142805027510172\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://seclists.org/fulldisclosure/2014/dec/23"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59437"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676786"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg24037783"
          },
          {
            "trust": 1.0,
            "url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18\u0026id=6060\u0026myns=phmc\u0026mync=e"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140431828824371\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677390"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59445"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59721"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58939"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676501"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59440"
          },
          {
            "trust": 1.0,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-august/136470.html"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020172"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59506"
          },
          {
            "trust": 1.0,
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3ba=commit%3bh=bc8923b1ec9c467755cd86f7848c50ee8812e441"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140389355508263\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.vmware.com/security/advisories/vmsa-2014-0012.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.novell.com/support/kb/doc.php?id=7015300"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676536"
          },
          {
            "trust": 1.0,
            "url": "http://www.websense.com/support/article/kbarticle/vulnerabilities-resolved-in-triton-apx-version-8-0"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59441"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59338"
          },
          {
            "trust": 1.0,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2014:106"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59043"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140266410314613\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://www.kb.cert.org/vuls/id/978508"
          },
          {
            "trust": 1.0,
            "url": "https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues1"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59004"
          },
          {
            "trust": 1.0,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=kb29217"
          },
          {
            "trust": 1.0,
            "url": "http://www.splunk.com/view/sp-caaam2d"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/61815"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59362"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59514"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59666"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59429"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59528"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58492"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677131"
          },
          {
            "trust": 1.0,
            "url": "https://www.ibm.com/support/docview.wss?uid=ssg1s1004671"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59827"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843"
          },
          {
            "trust": 1.0,
            "url": "https://www.ibm.com/support/docview.wss?uid=ssg1s1004670"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58977"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58930"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58639"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59282"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676833"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59495"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60571"
          },
          {
            "trust": 1.0,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095737"
          },
          {
            "trust": 1.0,
            "url": "http://www.securitytracker.com/id/1031032"
          },
          {
            "trust": 1.0,
            "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/941-security-advisory-0005"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=142546741516006\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58128"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58716"
          },
          {
            "trust": 1.0,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10629"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59190"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59142"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59438"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58433"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59389"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59364"
          },
          {
            "trust": 1.0,
            "url": "http://support.apple.com/kb/ht6443"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21676877"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037731"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1004690"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677567"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60577"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140904544427729\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140870499402361\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58719"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60819"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0633.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/61254"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59447"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59659"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html"
          },
          {
            "trust": 1.0,
            "url": "http://puppetlabs.com/security/cve/cve-2014-0224"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678289"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676655"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60567"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140448122410568\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59483"
          },
          {
            "trust": 1.0,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=kb29195"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140386311427810\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59040"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59306"
          },
          {
            "trust": 1.0,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-august/136473.html"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676496"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58714"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59661"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58742"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59163"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59368"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676333"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59214"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140499864129699\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59101"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140794476212181\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59451"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59305"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59602"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59450"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140983229106599\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59189"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59192"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59012"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59063"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59916"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140604261522465\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59300"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140369637402535\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140389274407904\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140491231331543\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140752315422991\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141025641601169\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59264"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59435"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59448"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676478"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59310"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141164638606214\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59490"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140544599631400\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "https://filezilla-project.org/versions.php?type=server"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=ssg1s1004678"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59202"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59231"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59380"
          },
          {
            "trust": 1.0,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf"
          },
          {
            "trust": 1.0,
            "url": "http://www.kerio.com/support/kerio-control/release-history"
          },
          {
            "trust": 1.0,
            "url": "http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15325.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59186"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59446"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676529"
          },
          {
            "trust": 1.0,
            "url": "https://www.novell.com/support/kb/doc.php?id=7015271"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140784085708882\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05301946"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg3t1020948"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59677"
          },
          {
            "trust": 1.0,
            "url": "http://www.blackberry.com/btsc/kb36051"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59215"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59460"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59784"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
          },
          {
            "trust": 1.0,
            "url": "https://www.intersectalliance.com/wp-content/uploads/release_notes/releasenotes_for_snare_for_mssql.pdf"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58385"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58945"
          },
          {
            "trust": 1.0,
            "url": "https://www.imperialviolet.org/2014/06/05/earlyccs.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59325"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59284"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141147110427269\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59454"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58337"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59589"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0632.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59669"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677836"
          },
          {
            "trust": 1.0,
            "url": "http://www.f-secure.com/en/web/labs_global/fsc-2014-6"
          },
          {
            "trust": 1.0,
            "url": "http://seclists.org/fulldisclosure/2014/jun/38"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020163"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59374"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676644"
          },
          {
            "trust": 1.0,
            "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1iv61506"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59449"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037761"
          },
          {
            "trust": 1.0,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2014:105"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0627.html"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037729"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59055"
          },
          {
            "trust": 1.0,
            "url": "https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues"
          },
          {
            "trust": 1.0,
            "url": "http://www.securitytracker.com/id/1031594"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677080"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0680.html"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59126"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59223"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59301"
          },
          {
            "trust": 1.0,
            "url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18\u0026id=6061\u0026myns=phmc\u0026mync=e"
          },
          {
            "trust": 1.0,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:062"
          },
          {
            "trust": 1.0,
            "url": "https://access.redhat.com/site/blogs/766093/posts/908133"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59287"
          },
          {
            "trust": 1.0,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095740"
          },
          {
            "trust": 1.0,
            "url": "http://ccsinjection.lepidum.co.jp"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59135"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141658880509699\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59167"
          },
          {
            "trust": 1.0,
            "url": "http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_release_notes.pdf"
          },
          {
            "trust": 1.0,
            "url": "http://www.tenable.com/blog/nessus-527-and-pvs-403-are-available-for-download"
          },
          {
            "trust": 1.0,
            "url": "https://discussions.nessus.org/thread/7517"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140317760000786\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21675626"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59175"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59502"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678233"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58713"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677527"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59211"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383410222440\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59824"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037727"
          },
          {
            "trust": 1.0,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1103586"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676889"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59375"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140621259019789\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59444"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60176"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140482916501310\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59365"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676615"
          },
          {
            "trust": 1.0,
            "url": "https://www.intersectalliance.com/wp-content/uploads/release_notes/releasenotes_for_snare_for_windows.pdf"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58667"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59990"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59354"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59442"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59188"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60049"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141383465822787\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59655"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59347"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58660"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59525"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59191"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg1it02314"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59093"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58759"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59518"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60522"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59413"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59370"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59459"
          },
          {
            "trust": 1.0,
            "url": "http://security.gentoo.org/glsa/glsa-201407-05.xml"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037730"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59132"
          },
          {
            "trust": 1.0,
            "url": "http://esupport.trendmicro.com/solution/en-us/1103813.aspx"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676334"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21676793"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59885"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59894"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0624.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59491"
          },
          {
            "trust": 1.0,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21676356"
          },
          {
            "trust": 1.0,
            "url": "http://www.novell.com/support/kb/doc.php?id=7015264"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59878"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037732"
          },
          {
            "trust": 1.0,
            "url": "http://linux.oracle.com/errata/elsa-2014-1053.html"
          },
          {
            "trust": 1.0,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59342"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140672208601650\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58745"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59162"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59530"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59383"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140852757108392\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58615"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/59529"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=140852826008699\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/60066"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676845"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0626.html"
          },
          {
            "trust": 1.0,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037870"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58579"
          },
          {
            "trust": 1.0,
            "url": "http://secunia.com/advisories/58743"
          },
          {
            "trust": 1.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-0631.html"
          },
          {
            "trust": 0.8,
            "url": "http://ccsinjection.lepidum.co.jp/"
          },
          {
            "trust": 0.8,
            "url": "http://ccsinjection.lepidum.co.jp/blog/2014-06-05/ccs-injection-en/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://plus.google.com/app/basic/stream/z12xhp3hbzbhhjgfm22ncvtbeua1dpaa004"
          },
          {
            "trust": 0.8,
            "url": "http://support.attachmate.com/techdocs/2700.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.debian.org/security/2014/dsa-2950"
          },
          {
            "trust": 0.8,
            "url": "https://admin.fedoraproject.org/updates/openssl-1.0.1e-38.fc19"
          },
          {
            "trust": 0.8,
            "url": "http://www.freebsd.org/security/advisories/freebsd-sa-14:14.openssl.asc"
          },
          {
            "trust": 0.8,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04401858"
          },
          {
            "trust": 0.8,
            "url": "http://jpn.nec.com/security-info/av14-002.html"
          },
          {
            "trust": 0.8,
            "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/3566"
          },
          {
            "trust": 0.8,
            "url": "http://linux.oracle.com/errata/elsa-2014-0625.html"
          },
          {
            "trust": 0.8,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00003.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.ubuntu.com/usn/usn-2232-1/"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0224"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.6,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.6,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0221"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3470"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0195"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0076"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0198"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-5298"
          },
          {
            "trust": 0.3,
            "url": "https://blogs.oracle.com/sunsecurity/entry/cve_2014_0221_resource_management"
          },
          {
            "trust": 0.3,
            "url": "http://securityadvisories.dlink.com/security/publication.aspx?name=sap10045"
          },
          {
            "trust": 0.3,
            "url": "http://www.cerberusftp.com/products/releasenotes.html"
          },
          {
            "trust": 0.3,
            "url": "http://googlechromereleases.blogspot.com/2014/06/chrome-for-android-update.html"
          },
          {
            "trust": 0.3,
            "url": "http://blogs.citrix.com/2014/06/06/citrix-security-advisory-for-openssl-vulnerabilities-june-2014/"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2014/aug/att-93/esa-2014-079.txt"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21678123"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21678073"
          },
          {
            "trust": 0.3,
            "url": "http://www.openssl.org"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100181245"
          },
          {
            "trust": 0.3,
            "url": "http://www8.hp.com/us/en/software-solutions/operations-analytics-operations-analysis/"
          },
          {
            "trust": 0.3,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21686583"
          },
          {
            "trust": 0.3,
            "url": "https://community.rapid7.com/community/metasploit/blog/2014/06/05/security-advisory-openssl-vulnerabilities-cve-2014-0224-cve-2014-0221-in-metasploit"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685551"
          },
          {
            "trust": 0.3,
            "url": "http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15343.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.marshut.com/ixwnpv/stunnel-5-02-released.html"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100181099"
          },
          {
            "trust": 0.3,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-17-094-04"
          },
          {
            "trust": 0.3,
            "url": "http://btsc.webapps.blackberry.com/btsc/viewdocument.do;jsessionid=98ec479ee69ccb916d2ea4b09943faf5?nocount=true\u0026externalid=kb36051\u0026sliceid=1\u0026cmd=\u0026forward=nonthreadedkc\u0026command=show\u0026kcid=kb36051\u0026viewe"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04355095"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04343424"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04345210"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04349175"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04349789"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04349897"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04363613"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04368523"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04378799"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04379485"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04337774"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05301946"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04336637"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21678356"
          },
          {
            "trust": 0.3,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095940"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678413"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21676889"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676673"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21678660"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676041"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676128"
          },
          {
            "trust": 0.3,
            "url": "https://www.xerox.com/download/security/security-bulletin/33a01-5228bdf5d027e/cert_security_mini-_bulletin_xrx15ao_for_cq8570-cq8870_v1-0.pdf"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100182784"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=nas8n1020200"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676356"
          },
          {
            "trust": 0.3,
            "url": "http://forums.alienvault.com/discussion/3054/security-advisory-alienvault-v4-10-0-addresses-several-vulnerabilities"
          },
          {
            "trust": 0.3,
            "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/archive/hw-345106.htm"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676793"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021009"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676840"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=nas8n1020163"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678104"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676226"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682023"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682026"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682025"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21682024"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21678289"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004695"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1020976"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1020952"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1007987"
          },
          {
            "trust": 0.3,
            "url": "http://www.ubuntu.com/usn/usn-2232-4/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/site/articles/904433"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_n"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-0076"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/jp/icewall_patchaccess"
          },
          {
            "trust": 0.1,
            "url": "http://h20566.www2.hp.com/portal/site/hpsc/template.page/public/psi/swddetail"
          },
          {
            "trust": 0.1,
            "url": "http://h18013.www1.hp.com/products/servers/management/fpdownload.html"
          },
          {
            "trust": 0.1,
            "url": "http://h17007.www1.hp.com/us/en/enterprise/servers/solutions/info-library/ind"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-511c3e0b2f6f4f6bbc796fc619"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-bd9a1cf60e344c549c4888db93"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-3395d737d98f42149125b9bb05"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-3a7aa5e233904ebe847a5e1555"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-d775367b0a28449ca05660778b"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/swpublishing/mtx-e8076c2a35804685ad65b2b1ba"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00376"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00444"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00388"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00429"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00405"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00377"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00410"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00422"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00430"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00382"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00432"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00416"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00389"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00380"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00417"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00396"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00378"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00391"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00390"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00437"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00393"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00398"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00442"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00404"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00406"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00423"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00431"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00428"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00400"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00402"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00392"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00385"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00394"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00435"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00443"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00409"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00411"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00440"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00426"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00427"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00384"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00434"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00414"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00408"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00415"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00395"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00413"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00433"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00441"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00399"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00438"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00383"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00403"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00419"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00424"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00439"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00401"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00387"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00381"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00436"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00420"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00421"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00412"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00386"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00397"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00425"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00379"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00407"
          },
          {
            "trust": 0.1,
            "url": "http://support.openview.hp.com/selfsolve/document/lid/amgr_00418"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-4618"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-2520"
          },
          {
            "trust": 0.1,
            "url": "https://support.emc.com/downloads/2732_documentum-server"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-2521"
          },
          {
            "trust": 0.1,
            "url": "http://www.software.hp.com"
          },
          {
            "trust": 0.1,
            "url": "https://h20392.www2.hp.com/portal/swdepot/displayproductinfo.do?productnumber"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/site/solutions/906533"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-0224.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?product=appplatform\u0026downloadtype=securitypatches\u0026version=5.2.0"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          },
          {
            "db": "BID",
            "id": "67901"
          },
          {
            "db": "PACKETSTORM",
            "id": "127386"
          },
          {
            "db": "PACKETSTORM",
            "id": "128156"
          },
          {
            "db": "PACKETSTORM",
            "id": "127607"
          },
          {
            "db": "PACKETSTORM",
            "id": "127362"
          },
          {
            "db": "PACKETSTORM",
            "id": "127937"
          },
          {
            "db": "PACKETSTORM",
            "id": "127923"
          },
          {
            "db": "PACKETSTORM",
            "id": "127469"
          },
          {
            "db": "PACKETSTORM",
            "id": "126934"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0224"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#978508",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-0224",
            "ident": null
          },
          {
            "db": "BID",
            "id": "67901",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127386",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128156",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127607",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127362",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127937",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127923",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "127469",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126934",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0224",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-06-05T00:00:00",
            "db": "CERT/CC",
            "id": "VU#978508",
            "ident": null
          },
          {
            "date": "2014-06-05T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-0224",
            "ident": null
          },
          {
            "date": "2014-06-05T00:00:00",
            "db": "BID",
            "id": "67901",
            "ident": null
          },
          {
            "date": "2014-07-09T04:03:23",
            "db": "PACKETSTORM",
            "id": "127386",
            "ident": null
          },
          {
            "date": "2014-09-04T18:39:03",
            "db": "PACKETSTORM",
            "id": "128156",
            "ident": null
          },
          {
            "date": "2014-07-24T23:47:46",
            "db": "PACKETSTORM",
            "id": "127607",
            "ident": null
          },
          {
            "date": "2014-07-06T18:53:39",
            "db": "PACKETSTORM",
            "id": "127362",
            "ident": null
          },
          {
            "date": "2014-08-20T15:18:56",
            "db": "PACKETSTORM",
            "id": "127937",
            "ident": null
          },
          {
            "date": "2014-08-19T16:52:04",
            "db": "PACKETSTORM",
            "id": "127923",
            "ident": null
          },
          {
            "date": "2014-07-15T23:58:24",
            "db": "PACKETSTORM",
            "id": "127469",
            "ident": null
          },
          {
            "date": "2014-06-05T19:57:17",
            "db": "PACKETSTORM",
            "id": "126934",
            "ident": null
          },
          {
            "date": "2014-06-05T21:55:07.817000",
            "db": "NVD",
            "id": "CVE-2014-0224",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-10-27T00:00:00",
            "db": "CERT/CC",
            "id": "VU#978508",
            "ident": null
          },
          {
            "date": "2023-11-07T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-0224",
            "ident": null
          },
          {
            "date": "2017-05-23T16:25:00",
            "db": "BID",
            "id": "67901",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-0224",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "67901"
          }
        ],
        "trust": 0.3
      },
      "title": {
        "_id": null,
        "data": "OpenSSL is vulnerable to a man-in-the-middle attack",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#978508"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "67901"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201506-0498

    Vulnerability from variot - Updated: 2026-04-10 23:17

    The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback. OpenSSL is prone to denial-of-service vulnerability. An attacker may exploit this issue to cause a denial-of-service condition. The following are vulnerable: OpenSSL 1.0.2 prior to 1.0.2b OpenSSL 1.0.1 prior to 1.0.1n OpenSSL 1.0.0 prior to 1.0.0s OpenSSL 0.9.8 prior to 0.9.8zg. OpenSSL Security Advisory [11 Jun 2015] =======================================

    DHE man-in-the-middle protection (Logjam)

    A vulnerability in the TLS protocol allows a man-in-the-middle attacker to downgrade vulnerable TLS connections using ephemeral Diffie-Hellman key exchange to 512-bit export-grade cryptography. This vulnerability is known as Logjam (CVE-2015-4000).

    OpenSSL has added protection for TLS clients by rejecting handshakes with DH parameters shorter than 768 bits. This limit will be increased to 1024 bits in a future release.

    Malformed ECParameters causes infinite loop (CVE-2015-1788)

    Severity: Moderate

    When processing an ECParameters structure OpenSSL enters an infinite loop if the curve specified is over a specially malformed binary polynomial field.

    This can be used to perform denial of service against any system which processes public keys, certificate requests or certificates. This includes TLS clients and TLS servers with client authentication enabled.

    This issue affects OpenSSL versions: 1.0.2 and 1.0.1. Recent 1.0.0 and 0.9.8 versions are not affected. 1.0.0d and 0.9.8r and below are affected.

    OpenSSL 1.0.2 users should upgrade to 1.0.2b OpenSSL 1.0.1 users should upgrade to 1.0.1n OpenSSL 1.0.0d (and below) users should upgrade to 1.0.0s OpenSSL 0.9.8r (and below) users should upgrade to 0.9.8zg

    This issue was reported to OpenSSL on 6th April 2015 by Joseph Birr-Pixton. The fix was developed by Andy Polyakov of the OpenSSL development team.

    Exploitable out-of-bounds read in X509_cmp_time (CVE-2015-1789)

    Severity: Moderate

    X509_cmp_time does not properly check the length of the ASN1_TIME string and can read a few bytes out of bounds. In addition, X509_cmp_time accepts an arbitrary number of fractional seconds in the time string.

    An attacker can use this to craft malformed certificates and CRLs of various sizes and potentially cause a segmentation fault, resulting in a DoS on applications that verify certificates or CRLs. TLS clients that verify CRLs are affected. TLS clients and servers with client authentication enabled may be affected if they use custom verification callbacks.

    This issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8.

    OpenSSL 1.0.2 users should upgrade to 1.0.2b OpenSSL 1.0.1 users should upgrade to 1.0.1n OpenSSL 1.0.0 users should upgrade to 1.0.0s OpenSSL 0.9.8 users should upgrade to 0.9.8zg

    This issue was reported to OpenSSL on 8th April 2015 by Robert Swiecki (Google), and independently on 11th April 2015 by Hanno Böck. The fix was developed by Emilia Käsper of the OpenSSL development team.

    PKCS7 crash with missing EnvelopedContent (CVE-2015-1790)

    Severity: Moderate

    The PKCS#7 parsing code does not handle missing inner EncryptedContent correctly. An attacker can craft malformed ASN.1-encoded PKCS#7 blobs with missing content and trigger a NULL pointer dereference on parsing.

    Applications that decrypt PKCS#7 data or otherwise parse PKCS#7 structures from untrusted sources are affected. OpenSSL clients and servers are not affected.

    This issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8.

    OpenSSL 1.0.2 users should upgrade to 1.0.2b OpenSSL 1.0.1 users should upgrade to 1.0.1n OpenSSL 1.0.0 users should upgrade to 1.0.0s OpenSSL 0.9.8 users should upgrade to 0.9.8zg

    This issue was reported to OpenSSL on 18th April 2015 by Michal Zalewski (Google). The fix was developed by Emilia Käsper of the OpenSSL development team.

    This can be used to perform denial of service against any system which verifies signedData messages using the CMS code.

    This issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8.

    OpenSSL 1.0.2 users should upgrade to 1.0.2b OpenSSL 1.0.1 users should upgrade to 1.0.1n OpenSSL 1.0.0 users should upgrade to 1.0.0s OpenSSL 0.9.8 users should upgrade to 0.9.8zg

    This issue was reported to OpenSSL on 31st March 2015 by Johannes Bauer. The fix was developed by Dr. Stephen Henson of the OpenSSL development team.

    This issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8. The fix was developed by Matt Caswell of the OpenSSL development team. It existed in previous OpenSSL versions and was fixed in June 2014.

    If a DTLS peer receives application data between the ChangeCipherSpec and Finished messages, buffering of such data may cause an invalid free, resulting in a segmentation fault or potentially, memory corruption.

    This issue affected older OpenSSL versions 1.0.1, 1.0.0 and 0.9.8.

    OpenSSL 0.9.8 DTLS users should upgrade to 0.9.8za OpenSSL 1.0.0 DTLS users should upgrade to 1.0.0m. OpenSSL 1.0.1 DTLS users should upgrade to 1.0.1h.

    This issue was originally reported on March 28th 2014 in https://rt.openssl.org/Ticket/Display.html?id=3286 by Praveen Kariyanahalli, and subsequently by Ivan Fratric and Felix Groebert (Google). A fix was developed by zhu qun-ying.

    The fix for this issue can be identified by commits bcc31166 (1.0.1), b79e6e3a (1.0.0) and 4b258e73 (0.9.8).

    Note

    As per our previous announcements and our Release Strategy (https://www.openssl.org/about/releasestrat.html), support for OpenSSL versions 1.0.0 and 0.9.8 will cease on 31st December 2015. No security updates for these releases will be provided after that date. Users of these releases are advised to upgrade.

    References

    URL for this Security Advisory: https://www.openssl.org/news/secadv_20150611.txt

    Note: the online version of the advisory may be updated with additional details over time.

    For details of OpenSSL severity classifications please see: https://www.openssl.org/about/secpolicy.html

    . These vulnerabilities include:

    The SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" also known as "POODLE", which could be exploited remotely resulting in disclosure of information. The following firmware versions of Virtual Connect (VC) are impacted:

    HPE BladeSystem c-Class Virtual Connect (VC) Firmware 4.30 through VC 4.45 HPE BladeSystem c-Class Virtual Connect (VC) Firmware 3.62 through VC 4.21

    Note: Firmware versions 3.62 through 4.21 are not impacted by CVE-2016-0800, CVE-2015-3194, CVE-2014-3566, CVE-2015-0705, CVE-2016-0799, and CVE-2016-2842.

    Release Date: 2015-07-10 Last Updated: 2015-07-10

    Potential Security Impact: Remote Denial of Service (DoS)

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP IceWall Products running OpenSSL. Product Impacted Versions Impacted CVEs

    HP IceWall MCRP v3.0 CVE-2015-1789 CVE-2015-1790 CVE-2015-1792

    HP IceWall SSO Dfw v10.0 CVE-2015-1789 CVE-2015-1790 CVE-2015-1792

    HP IceWall SSO Agent Option v10.0 CVE-2015-1789 CVE-2015-1790 CVE-2015-1792

    HP IceWall SSO Certd v10.0 CVE-2015-1792

    HP IceWall Federation Agent v3.0 CVE-2015-1792

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2015-1789 (AV:N/AC:M/Au:N/C:N/I:N/A:P) 4.3 CVE-2015-1790 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2015-1792 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP recommends applying the latest OS vendor security patches for OpenSSL to resolve the vulnerabilities for HP IceWall Products.

    HP IceWall SSO Dfw v10.0 and Certd v10.0, which are running on RHEL, could be using either the OS bundled OpenSSL library or the OpenSSL bundled with HP IceWall. If still using the OpenSSL bundled with HP IceWall, please apply the latest OS vendor security patches for OpenSSL and switch to the OpenSSL library bundled with the OS.

    Documents are available at the following location with instructions to switch to the OS bundled OpenSSL library:

    http://www.hp.com/jp/icewall_patchaccess
    

    Note: The HP IceWall product is only available in Japan.

    HISTORY Version:1 (rev.1) - 10 July 2015 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. This could allow remote attackers to cause a denial of service. This could allow remote attackers to cause a denial of service (crash). This could allow remote attackers to cause a denial of service.

    For the oldstable distribution (wheezy), these problems have been fixed in version 1.0.1e-2+deb7u17.

    For the stable distribution (jessie), these problems have been fixed in version 1.0.1k-3+deb8u1.

    For the testing distribution (stretch), these problems have been fixed in version 1.0.2b-1.

    For the unstable distribution (sid), these problems have been fixed in version 1.0.2b-1. Corrected: 2015-06-11 19:07:45 UTC (stable/10, 10.1-STABLE) 2015-06-12 07:23:55 UTC (releng/10.1, 10.1-RELEASE-p12) 2015-06-11 19:39:27 UTC (stable/9, 9.3-STABLE) 2015-06-12 07:23:55 UTC (releng/9.3, 9.3-RELEASE-p16) 2015-06-11 19:39:27 UTC (stable/8, 8.4-STABLE) 2015-06-12 07:23:55 UTC (releng/8.4, 8.4-RELEASE-p30) CVE Name: CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791 CVE-2015-1792, CVE-2015-4000

    For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit . Background

    FreeBSD includes software from the OpenSSL Project.

    II. [CVE-2015-1791]

    The OpenSSL advisory also describes a problem that is identified as CVE-2014-8176, which is already fixed by an earlier FreeBSD Errata Notice, FreeBSD-EN-15:02.openssl.

    III. [CVE-2015-4000]. [CVE-2015-1788]. This affects FreeBSD 10.1 only, as the problem was no longer exist in OpenSSL 0.9.8 series since July 2012. [CVE-2015-1790]. [CVE-2015-1792]

    An attacker may be able to crash multi-thread applications that supports resumed TLS handshakes. [CVE-2015-1791]

    IV. Workaround

    No workaround is available.

    V. Solution

    Perform one of the following:

    1) Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date.

    2) To update your vulnerable system via a binary patch:

    Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility:

    freebsd-update fetch

    freebsd-update install

    3) To update your vulnerable system via a source code patch:

    The following patches have been verified to apply to the applicable FreeBSD release branches.

    a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.

    [FreeBSD 10.1]

    fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-10.1.patch

    fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-10.1.patch.asc

    gpg --verify openssl-10.1.patch.asc

    [FreeBSD 9.3 and 8.4]

    fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-8.4.patch

    fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-8.4.patch.asc

    gpg --verify openssl-8.4.patch.asc

    b) Apply the patch. Execute the following commands as root:

    cd /usr/src

    patch < /path/to/patch

    c) Recompile the operating system using buildworld and installworld as described in .

    Restart all deamons using the library, or reboot the system.

    VI. Correction details

    The following list contains the correction revision numbers for each affected branch.

    Branch/path Revision


    stable/8/ r284286 releng/8.4/ r284295 stable/9/ r284286 releng/9.3/ r284295 stable/10/ r284285 releng/10.1/ r284295


    To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed:

    svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base

    Or visit the following URL, replacing NNNNNN with the revision number:

    VII. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: openssl security update Advisory ID: RHSA-2015:1115-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-1115.html Issue date: 2015-06-15 CVE Names: CVE-2014-8176 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-3216 =====================================================================

    1. Summary:

    Updated openssl packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7.

    Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

    1. Description:

    OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a full-strength, general purpose cryptography library.

    An invalid free flaw was found in the way OpenSSL handled certain DTLS handshake messages. A malicious DTLS client or server could cause a DTLS server or client using OpenSSL to crash or, potentially, execute arbitrary code. (CVE-2014-8176)

    A flaw was found in the way the OpenSSL packages shipped with Red Hat Enterprise Linux 6 and 7 performed locking in the ssleay_rand_bytes() function. (CVE-2015-3216)

    An out-of-bounds read flaw was found in the X509_cmp_time() function of OpenSSL. A specially crafted X.509 certificate or a Certificate Revocation List (CRL) could possibly cause a TLS/SSL server or client using OpenSSL to crash. (CVE-2015-1789)

    A race condition was found in the session handling code of OpenSSL. This issue could possibly cause a multi-threaded TLS/SSL client using OpenSSL to double free session ticket data and crash. (CVE-2015-1791)

    A flaw was found in the way OpenSSL handled Cryptographic Message Syntax (CMS) messages. A CMS message with an unknown hash function identifier could cause an application using OpenSSL to enter an infinite loop. (CVE-2015-1792)

    A NULL pointer dereference was found in the way OpenSSL handled certain PKCS#7 inputs. A specially crafted PKCS#7 input with missing EncryptedContent data could cause an application using OpenSSL to crash. (CVE-2015-1790)

    Red Hat would like to thank the OpenSSL project for reporting CVE-2014-8176, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791 and CVE-2015-1792 flaws. Upstream acknowledges Praveen Kariyanahalli and Ivan Fratric as the original reporters of CVE-2014-8176, Robert Swiecki and Hanno Böck as the original reporters of CVE-2015-1789, Michal Zalewski as the original reporter of CVE-2015-1790, Emilia Käsper as the original report of CVE-2015-1791 and Johannes Bauer as the original reporter of CVE-2015-1792.

    All openssl users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. For the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    For details on how to apply this update, refer to:

    https://access.redhat.com/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1227574 - CVE-2015-3216 openssl: Crash in ssleay_rand_bytes due to locking regression 1228603 - CVE-2015-1789 OpenSSL: out-of-bounds read in X509_cmp_time 1228604 - CVE-2015-1790 OpenSSL: PKCS7 crash with missing EnvelopedContent 1228607 - CVE-2015-1792 OpenSSL: CMS verify infinite loop with unknown hash function 1228608 - CVE-2015-1791 OpenSSL: Race condition handling NewSessionTicket 1228611 - CVE-2014-8176 OpenSSL: Invalid free in DTLS

    1. Package List:

    Red Hat Enterprise Linux Desktop (v. 6):

    Source: openssl-1.0.1e-30.el6_6.11.src.rpm

    i386: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm

    x86_64: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux Desktop Optional (v. 6):

    i386: openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm openssl-perl-1.0.1e-30.el6_6.11.i686.rpm openssl-static-1.0.1e-30.el6_6.11.i686.rpm

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-static-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: openssl-1.0.1e-30.el6_6.11.src.rpm

    x86_64: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-static-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: openssl-1.0.1e-30.el6_6.11.src.rpm

    i386: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm

    ppc64: openssl-1.0.1e-30.el6_6.11.ppc.rpm openssl-1.0.1e-30.el6_6.11.ppc64.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.ppc.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.ppc64.rpm openssl-devel-1.0.1e-30.el6_6.11.ppc.rpm openssl-devel-1.0.1e-30.el6_6.11.ppc64.rpm

    s390x: openssl-1.0.1e-30.el6_6.11.s390.rpm openssl-1.0.1e-30.el6_6.11.s390x.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.s390.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.s390x.rpm openssl-devel-1.0.1e-30.el6_6.11.s390.rpm openssl-devel-1.0.1e-30.el6_6.11.s390x.rpm

    x86_64: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-perl-1.0.1e-30.el6_6.11.i686.rpm openssl-static-1.0.1e-30.el6_6.11.i686.rpm

    ppc64: openssl-debuginfo-1.0.1e-30.el6_6.11.ppc64.rpm openssl-perl-1.0.1e-30.el6_6.11.ppc64.rpm openssl-static-1.0.1e-30.el6_6.11.ppc64.rpm

    s390x: openssl-debuginfo-1.0.1e-30.el6_6.11.s390x.rpm openssl-perl-1.0.1e-30.el6_6.11.s390x.rpm openssl-static-1.0.1e-30.el6_6.11.s390x.rpm

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-static-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: openssl-1.0.1e-30.el6_6.11.src.rpm

    i386: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm

    x86_64: openssl-1.0.1e-30.el6_6.11.i686.rpm openssl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm openssl-devel-1.0.1e-30.el6_6.11.i686.rpm openssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: openssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm openssl-perl-1.0.1e-30.el6_6.11.i686.rpm openssl-static-1.0.1e-30.el6_6.11.i686.rpm

    x86_64: openssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm openssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm openssl-static-1.0.1e-30.el6_6.11.x86_64.rpm

    Red Hat Enterprise Linux Client (v. 7):

    Source: openssl-1.0.1e-42.el7_1.8.src.rpm

    x86_64: openssl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-libs-1.0.1e-42.el7_1.8.i686.rpm openssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux Client Optional (v. 7):

    x86_64: openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-devel-1.0.1e-42.el7_1.8.i686.rpm openssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm openssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-static-1.0.1e-42.el7_1.8.i686.rpm openssl-static-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode (v. 7):

    Source: openssl-1.0.1e-42.el7_1.8.src.rpm

    x86_64: openssl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-libs-1.0.1e-42.el7_1.8.i686.rpm openssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode Optional (v. 7):

    x86_64: openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-devel-1.0.1e-42.el7_1.8.i686.rpm openssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm openssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-static-1.0.1e-42.el7_1.8.i686.rpm openssl-static-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: openssl-1.0.1e-42.el7_1.8.src.rpm

    ppc64: openssl-1.0.1e-42.el7_1.8.ppc64.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.ppc.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.ppc64.rpm openssl-devel-1.0.1e-42.el7_1.8.ppc.rpm openssl-devel-1.0.1e-42.el7_1.8.ppc64.rpm openssl-libs-1.0.1e-42.el7_1.8.ppc.rpm openssl-libs-1.0.1e-42.el7_1.8.ppc64.rpm

    s390x: openssl-1.0.1e-42.el7_1.8.s390x.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.s390.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.s390x.rpm openssl-devel-1.0.1e-42.el7_1.8.s390.rpm openssl-devel-1.0.1e-42.el7_1.8.s390x.rpm openssl-libs-1.0.1e-42.el7_1.8.s390.rpm openssl-libs-1.0.1e-42.el7_1.8.s390x.rpm

    x86_64: openssl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-devel-1.0.1e-42.el7_1.8.i686.rpm openssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm openssl-libs-1.0.1e-42.el7_1.8.i686.rpm openssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: openssl-1.0.1e-42.ael7b_1.8.src.rpm

    ppc64le: openssl-1.0.1e-42.ael7b_1.8.ppc64le.rpm openssl-debuginfo-1.0.1e-42.ael7b_1.8.ppc64le.rpm openssl-devel-1.0.1e-42.ael7b_1.8.ppc64le.rpm openssl-libs-1.0.1e-42.ael7b_1.8.ppc64le.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64: openssl-debuginfo-1.0.1e-42.el7_1.8.ppc.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.ppc64.rpm openssl-perl-1.0.1e-42.el7_1.8.ppc64.rpm openssl-static-1.0.1e-42.el7_1.8.ppc.rpm openssl-static-1.0.1e-42.el7_1.8.ppc64.rpm

    s390x: openssl-debuginfo-1.0.1e-42.el7_1.8.s390.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.s390x.rpm openssl-perl-1.0.1e-42.el7_1.8.s390x.rpm openssl-static-1.0.1e-42.el7_1.8.s390.rpm openssl-static-1.0.1e-42.el7_1.8.s390x.rpm

    x86_64: openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-static-1.0.1e-42.el7_1.8.i686.rpm openssl-static-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64le: openssl-debuginfo-1.0.1e-42.ael7b_1.8.ppc64le.rpm openssl-perl-1.0.1e-42.ael7b_1.8.ppc64le.rpm openssl-static-1.0.1e-42.ael7b_1.8.ppc64le.rpm

    Red Hat Enterprise Linux Workstation (v. 7):

    Source: openssl-1.0.1e-42.el7_1.8.src.rpm

    x86_64: openssl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-devel-1.0.1e-42.el7_1.8.i686.rpm openssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm openssl-libs-1.0.1e-42.el7_1.8.i686.rpm openssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 7):

    x86_64: openssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm openssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm openssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm openssl-static-1.0.1e-42.el7_1.8.i686.rpm openssl-static-1.0.1e-42.el7_1.8.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2014-8176 https://access.redhat.com/security/cve/CVE-2015-1789 https://access.redhat.com/security/cve/CVE-2015-1790 https://access.redhat.com/security/cve/CVE-2015-1791 https://access.redhat.com/security/cve/CVE-2015-1792 https://access.redhat.com/security/cve/CVE-2015-3216 https://access.redhat.com/security/updates/classification/#moderate https://www.openssl.org/news/secadv_20150611.txt

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFVf0NNXlSAg2UNWIIRArL4AJ9e7lbD/4Nks5midR5o3E4Bs5lQWQCgnrvk ZyXizCcFL9oAQexObjxp/Mo= =PXiY -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "15.1"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0q"
          },
          {
            "_id": null,
            "model": "sparc-opl service processor",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0e"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "0.9.8zf"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0d"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0a"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0p"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1f"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0k"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1l"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1d"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1c"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1h"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0j"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1j"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0l"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1i"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1e"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0m"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0g"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1g"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0c"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0o"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0b"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0f"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0r"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0n"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1a"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0i"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.0h"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1k"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.2a"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1b"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.0.1m"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d20",
            "scope": null,
            "trust": 0.9,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "istorage",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "hs series all versions"
          },
          {
            "_id": null,
            "model": "hpe systems insight manager",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "foundation v8.2 to  v8.5"
          },
          {
            "_id": null,
            "model": "enterprisedirectoryserver",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "peoplesoft products",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  peoplesoft enterprise peopletools 8.54"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v3.0"
          },
          {
            "_id": null,
            "model": "enterprisedirectoryserver",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "ver6.0"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v6.2"
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "st ard-j edition v7.1 to  v8.1"
          },
          {
            "_id": null,
            "model": "hpe matrix operating environment",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v7.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.0s"
          },
          {
            "_id": null,
            "model": "enterprisedirectoryserver",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "webotx",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "st ard edition v4.2 to  v6.5"
          },
          {
            "_id": null,
            "model": "websam",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "mcoperations ver3.6.2 to  ver4.2"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "ix3000 series",
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": "ip38x/5000",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "all revisions"
          },
          {
            "_id": null,
            "model": "capssuite",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v3.0 to  v4.0 manager component"
          },
          {
            "_id": null,
            "model": "secureware/pki application development kit",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "ver3.01"
          },
          {
            "_id": null,
            "model": "mysql",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "5.6.25 and earlier"
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "express v8.2 to  v9.2"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.10 to  10.10.4"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v3.1"
          },
          {
            "_id": null,
            "model": "univerge",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "3c ucm"
          },
          {
            "_id": null,
            "model": "e-business suite",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "11.5.10.2"
          },
          {
            "_id": null,
            "model": "hpe insight control",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "none"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "/sg series  sg3600lm/lg/lj v6.1"
          },
          {
            "_id": null,
            "model": "websam",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "systemmanager ver5.5.2 to  ver6.2.1"
          },
          {
            "_id": null,
            "model": "ip38x/3500",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "all revisions"
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "st ard v8.2 to  v9.2"
          },
          {
            "_id": null,
            "model": "istorage",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "nv7500/nv5500/nv3500 series"
          },
          {
            "_id": null,
            "model": "istorage",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "nv7400/nv5400/nv3400 series"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v4.0"
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "web edition v7.1 to  v8.1"
          },
          {
            "_id": null,
            "model": "fusion middleware",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle exalogic infrastructure eecs 2.0.6.2.3"
          },
          {
            "_id": null,
            "model": "webotx",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "uddi registry v1.1 to  v7.1"
          },
          {
            "_id": null,
            "model": "websam",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "application navigator probe option ver3.1.0.x to  ver4.1.0.x"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v8.0"
          },
          {
            "_id": null,
            "model": "secureware/pki application development kit",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "ver3.02"
          },
          {
            "_id": null,
            "model": "univerge",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "3c cmm"
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "enterprise v8.2 to  v9.2"
          },
          {
            "_id": null,
            "model": "webotx",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "enterprise edition v4.2 to  v6.5"
          },
          {
            "_id": null,
            "model": "hpe server migration pack",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "st ard edition v7.1"
          },
          {
            "_id": null,
            "model": "xcp",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "(sparc enterprise m3000/m4000/m5000/m8000/m9000 server )"
          },
          {
            "_id": null,
            "model": "webotx application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "enterprise edition v7.1"
          },
          {
            "_id": null,
            "model": "peoplesoft products",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  peoplesoft enterprise peopletools 8.53"
          },
          {
            "_id": null,
            "model": "hpe version control repository manager",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "/sg series  intersecvm/sg v1.2"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v7.0"
          },
          {
            "_id": null,
            "model": "websam",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "jobcenter r14.1"
          },
          {
            "_id": null,
            "model": "ip38x/810",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "all revisions"
          },
          {
            "_id": null,
            "model": "webotx",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "st ard-j edition v4.1 to  v6.5"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.2b"
          },
          {
            "_id": null,
            "model": "hpe insight control",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "server provisioning"
          },
          {
            "_id": null,
            "model": "xcp",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "supply chain products suite",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle transportation management 6.2"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.9.5"
          },
          {
            "_id": null,
            "model": "webotx sip application server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "st ard edition v7.1 to  v8.1"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.8.5"
          },
          {
            "_id": null,
            "model": "websam",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "application navigator agent ver3.3 to  ver4.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "ix2000 series",
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": "secureware/pki application development kit",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "ver3.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "supply chain products suite",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "of  oracle transportation management 6.1"
          },
          {
            "_id": null,
            "model": "webotx",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "web edition v4.1 to  v6.5"
          },
          {
            "_id": null,
            "model": "webotx enterprise service bus",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v6.4 to  v9.2"
          },
          {
            "_id": null,
            "model": "ip38x/1210",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "all revisions"
          },
          {
            "_id": null,
            "model": "websam",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "application navigator manager ver3.2.2 to  ver4.1"
          },
          {
            "_id": null,
            "model": "webotx portal",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "v8.2 to  v9.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "openssl",
            "version": "1.0.1n"
          },
          {
            "_id": null,
            "model": "enterprisedirectoryserver",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "enterprisedirectoryserver",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": "secureware/pki application development kit",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "ver3.1"
          },
          {
            "_id": null,
            "model": "express5800",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "nec",
            "version": "/sg series  univerge sg3000lg/lj"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "8.0.0.2"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d25",
            "scope": null,
            "trust": 0.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "ibm",
            "version": "7.1.2.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2"
          },
          {
            "_id": null,
            "model": "sparc enterprise m5000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1118"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.6"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "8.53"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.18"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d33",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "power hmc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.8.0.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.6"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.2.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.5"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.7"
          },
          {
            "_id": null,
            "model": "worklight foundation enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.20"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.12"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.17"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.7"
          },
          {
            "_id": null,
            "model": "imc products",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37001.1"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d50",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.4"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.15"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50001.1"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0.0.52"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1.1.2"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1i",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "sdk for node.js for bluemix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0.10.38"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.12"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0h",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1n",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.6"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.0.0"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.20"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.211"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "qradar siem mr2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "security appscan enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "junos 15.1r2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "cognos metrics manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.3"
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3350m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8y",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "sparc enterprise m4000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1118"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.4.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3.12"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.0"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.1.0"
          },
          {
            "_id": null,
            "model": "abyp-2t-1s-1l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.68"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8052",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.4.0"
          },
          {
            "_id": null,
            "model": "fortimail",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "4.3.10"
          },
          {
            "_id": null,
            "model": "abyp-10g-2sr-2lr-1-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.4"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.4.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "tealeaf customer experience",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.5.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "security proventia network enterprise scanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "security access manager for web appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0.1"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.08"
          },
          {
            "_id": null,
            "model": "worklight consumer edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.3"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8052",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.15.0"
          },
          {
            "_id": null,
            "model": "meeting exchange sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.17"
          },
          {
            "_id": null,
            "model": "exalogic infrastructure eecs",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.0.6.2.3"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.5"
          },
          {
            "_id": null,
            "model": "security privileged identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1.1"
          },
          {
            "_id": null,
            "model": "infosphere master data management provider hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.7"
          },
          {
            "_id": null,
            "model": "abyp-10g-4lr-1-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.4.0.5"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.02"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "linux x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.5.0.2"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "qradar siem patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.34"
          },
          {
            "_id": null,
            "model": "sparc enterprise m9000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1117"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.5"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.0.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.4.1"
          },
          {
            "_id": null,
            "model": "worklight enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.0"
          },
          {
            "_id": null,
            "model": "fortiweb",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.3.3"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8124-e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.4.0"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.25"
          },
          {
            "_id": null,
            "model": "messagesight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "comware products",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "70"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0o",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.5"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "fortianalyzer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.0.9"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "flashsystem 9840-ae2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "840"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3387"
          },
          {
            "_id": null,
            "model": "abyp-10g-4sr-1-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "enterprise session border controller ecz7.3m2p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.03"
          },
          {
            "_id": null,
            "model": "ds8870 r7.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "sdk for node.js for bluemix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0.12.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.4.0.5"
          },
          {
            "_id": null,
            "model": "infosphere master data management standard/advanced edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.213"
          },
          {
            "_id": null,
            "model": "qradar siem mr2 patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.18"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.2"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.4.0.4.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.0"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.1"
          },
          {
            "_id": null,
            "model": "fortivoice enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "3.0.6"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.4.7"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.28"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4.19"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2.0.5"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.1"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.9.3"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d55",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8124",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.5.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "ip office application server sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.01"
          },
          {
            "_id": null,
            "model": "fortisandbox",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "icewall sso dfw",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.7"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.4.0.6"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.9"
          },
          {
            "_id": null,
            "model": "junos 13.2x51-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3"
          },
          {
            "_id": null,
            "model": "infosphere master data management standard/advanced edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.0.3"
          },
          {
            "_id": null,
            "model": "enterprise content management system monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1.3"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3.0.12"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0s",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "ip office application server sp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.02"
          },
          {
            "_id": null,
            "model": "junos 12.1x47-d45",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.4"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "sparc enterprise m5000 xcp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.4"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.5"
          },
          {
            "_id": null,
            "model": "aura experience portal sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.2"
          },
          {
            "_id": null,
            "model": "screenos 6.3.0r13",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "initiate master data service provider hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.7"
          },
          {
            "_id": null,
            "model": "aura presence services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "fortiddos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "4.1.5"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp4 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.5"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "12.1.0.3"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3.13"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.3"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8zf",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.4"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.7"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.2"
          },
          {
            "_id": null,
            "model": "abyp-0t-0s-4l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "qradar incident forensics mr3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.14"
          },
          {
            "_id": null,
            "model": "flashsystem 9840-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "840"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8316",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.15.0"
          },
          {
            "_id": null,
            "model": "unified security management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1.0.6"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "websphere mq for hp nonstop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.5.0.2"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.3.0.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.1.0.2"
          },
          {
            "_id": null,
            "model": "worklight consumer edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.18"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.1.3"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8zc",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.4"
          },
          {
            "_id": null,
            "model": "junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5"
          },
          {
            "_id": null,
            "model": "infosphere guardium for applications",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "server migration pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.3"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "rational application developer for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.0.1"
          },
          {
            "_id": null,
            "model": "worklight foundation consumer edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2.0.1"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.2"
          },
          {
            "_id": null,
            "model": "tealeaf customer experience",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "sparc enterprise m4000 xcp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35001.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.6"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.7"
          },
          {
            "_id": null,
            "model": "worklight enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.1"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.3.0.1.0"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8124",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.4.0"
          },
          {
            "_id": null,
            "model": "flashsystem 9846-ac1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "qradar siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "fsso build",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "235"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8s",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.3"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.5"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.2"
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3376m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "12.01"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "junos 13.2x51-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5"
          },
          {
            "_id": null,
            "model": "sparc enterprise m8000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1118"
          },
          {
            "_id": null,
            "model": "mobilefirst platform foundation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.14"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.4.0.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1.0.6"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.1"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d32",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.5"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "sparc enterprise m3000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1118"
          },
          {
            "_id": null,
            "model": "junos 12.3r10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.214"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1h",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2.0.5"
          },
          {
            "_id": null,
            "model": "power hmc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.3.0.0"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.0.2"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.211"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.0.2"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.22",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.3"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "project openssl b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "junos 14.1r3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.3.0.12"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.4.0.6"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "worklight foundation consumer edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.20"
          },
          {
            "_id": null,
            "model": "junos 13.3r5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "abyp-4tl-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "cms r16.3",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.2"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1209"
          },
          {
            "_id": null,
            "model": "project openssl k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "netinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.6.0"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.5.0.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.8"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4.19"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3361"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "workflow for bluemix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "filenet system monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d34",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "sterling connect:direct for hp nonstop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.2.77"
          },
          {
            "_id": null,
            "model": "junos 14.1r4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.27"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4.1.8"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "command center appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.0.3"
          },
          {
            "_id": null,
            "model": "netscaler gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.33"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.5"
          },
          {
            "_id": null,
            "model": "enterprise content management system monitor fix pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.02"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix ifix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.4.03"
          },
          {
            "_id": null,
            "model": "i v5r4",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8n",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "abyp-2t-1s-1l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "icewall sso agent option",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2.0.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2.0.3"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.1"
          },
          {
            "_id": null,
            "model": "junos 14.2r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4.1.8"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264t",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.14.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junos 14.1r2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.213"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.4"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.6"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "i v5r3",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.2b",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8052",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.5.0"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "screenos 6.3.0r19",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.8.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.01"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.14"
          },
          {
            "_id": null,
            "model": "abyp-2t-2s-0l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.7"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "cognos insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.4"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.2.0.8"
          },
          {
            "_id": null,
            "model": "abyp-0t-4s-0l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.4"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.15"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.213"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rational application developer for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.1"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1.0.6"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11.16.09",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.07"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.38"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.12"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8124-e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.5.0"
          },
          {
            "_id": null,
            "model": "qradar siem patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.41"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "aura utility services sp7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.3.0.12"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "rational software architect for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.2"
          },
          {
            "_id": null,
            "model": "fortirecorder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "flashsystem 9848-ac1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "abyp-2t-0s-2l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "15.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.16"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.14"
          },
          {
            "_id": null,
            "model": "rational software architect for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "version control repository manager 7.4.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264t",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.15.0"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "tealeaf customer experience",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "cognos metrics manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.4.0"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "flashsystem 9846-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.4.0.6"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "linux x86 64 -current",
            "scope": null,
            "trust": 0.3,
            "vendor": "slackware",
            "version": null
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.4.3"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d35",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.3.8.3"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.15"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.4"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.0"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.15.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "security privileged identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "junos 12.1x47-d11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.35"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.4"
          },
          {
            "_id": null,
            "model": "junos d25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "_id": null,
            "model": "junos 12.3r7",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "unified security management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.14"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8zg",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 13.2x51-d40",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8t",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "sparc enterprise m8000 xcp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "abyp-0t-4s-0l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "qradar siem mr3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.8"
          },
          {
            "_id": null,
            "model": "power hmc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2.0.0"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.7"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.5"
          },
          {
            "_id": null,
            "model": "transportation management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.1.3"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.210"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.4"
          },
          {
            "_id": null,
            "model": "enterprise content management system monitor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.13"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1m",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "fortimanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.0.9"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.3.0.5"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.16"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.3"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.00",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2.0.3"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.1.0.7"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.10"
          },
          {
            "_id": null,
            "model": "linux x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.2.1"
          },
          {
            "_id": null,
            "model": "linux x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.3"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "abyp-10g-2sr-2lr-1-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1.5"
          },
          {
            "_id": null,
            "model": "power hmc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.1.0.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.13"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.8"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0r",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2.0"
          },
          {
            "_id": null,
            "model": "aura conferencing sp7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3376"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.3.0.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.11"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.23"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "workload deployer if9",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.7"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.5"
          },
          {
            "_id": null,
            "model": "aura utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.010"
          },
          {
            "_id": null,
            "model": "aura system manager sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "junos 12.3r9",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2.0.5"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.12"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.212"
          },
          {
            "_id": null,
            "model": "cognos insight standard edition fp if",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.124"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.6.0"
          },
          {
            "_id": null,
            "model": "sparc enterprise m4000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1117"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "aura utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11.14.15",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.11"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "fortiap",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.0.8"
          },
          {
            "_id": null,
            "model": "tivoli composite application manager for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.5"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8332",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.7.20.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.3"
          },
          {
            "_id": null,
            "model": "fortiadc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1.0.7"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.12"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.5.0.3"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.12"
          },
          {
            "_id": null,
            "model": "endpoint manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "bladesystem c-class virtual connect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.21"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1.1"
          },
          {
            "_id": null,
            "model": "unified security management",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0.0.15"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netscaler service delivery appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "cognos insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.22"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.2.7"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d36",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security access manager for mobile",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11.15.13",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5.0.3"
          },
          {
            "_id": null,
            "model": "qradar incident forensics patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.41"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.5.0.3"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "session border controller for enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.3"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.7"
          },
          {
            "_id": null,
            "model": "junos 12.1x47-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.5.0.3"
          },
          {
            "_id": null,
            "model": "security identity manager virtual appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.4"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0q",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8u",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3.14"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "security access manager for web appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.6"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.15"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.12"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4.1.3"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1e",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.4"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "one-x client enablement services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.15"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.24"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.2.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.04",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d51",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.1"
          },
          {
            "_id": null,
            "model": "one-x client enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "smartcloud provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.6.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.8"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "qradar incident forensics mr2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8m",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl j",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.5.0.0"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.6"
          },
          {
            "_id": null,
            "model": "meeting exchange sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.0.2"
          },
          {
            "_id": null,
            "model": "initiate master data service patient hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.7"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.2"
          },
          {
            "_id": null,
            "model": "fortios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.2.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "junos 12.3x48-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "infosphere master data management patient hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.10"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.10"
          },
          {
            "_id": null,
            "model": "junos d30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.7"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.0.3"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.16"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.3"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "cognos metrics manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.03"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.2.1"
          },
          {
            "_id": null,
            "model": "rational policy tester",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "qradar siem mr2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "netscaler application delivery controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1.4"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3.9"
          },
          {
            "_id": null,
            "model": "bladesystem c-class virtual connect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.30"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.3"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "junos 12.3r6",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "endpoint manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "aura conferencing sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.9.1"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264cs",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.8.11.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.1"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.3"
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3387m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.4"
          },
          {
            "_id": null,
            "model": "junos d40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "junos 15.1r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3379m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8za",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "comware products",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "50"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.2"
          },
          {
            "_id": null,
            "model": "abyp-4ts-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix ifix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.5.0.38"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.14"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8q",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.8"
          },
          {
            "_id": null,
            "model": "screenos 6.3.0r22",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.4.0.5"
          },
          {
            "_id": null,
            "model": "endpoint manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "transportation management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.21"
          },
          {
            "_id": null,
            "model": "netinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.6.0.14"
          },
          {
            "_id": null,
            "model": "cognos insight standard edition fp if",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.214"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.2a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0.0.16"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.2"
          },
          {
            "_id": null,
            "model": "junos 14.1r6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "fortios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "4.3.16"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "abyp-0t-2s-2l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3.0.10"
          },
          {
            "_id": null,
            "model": "cms r17",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.17"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.2"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8ze",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.15"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.5"
          },
          {
            "_id": null,
            "model": "worklight consumer edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2"
          },
          {
            "_id": null,
            "model": "i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.7"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23.1.007",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "unified security management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "forticlient windows/mac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.31"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.7"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix ifix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.4.04"
          },
          {
            "_id": null,
            "model": "communication server 1000e signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.4.0.6"
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3352m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "security identity governance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "aura system manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "infosphere information server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.11.5.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.6"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0.1.12"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.13"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "power hmc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.0.0"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.7"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11.02.008",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.13"
          },
          {
            "_id": null,
            "model": "insight control server provisioning",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.3.0.5"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.1"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8x"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.4.19"
          },
          {
            "_id": null,
            "model": "abyp-10g-4sr-1-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "http server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11.5.10.2"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.2.0.1"
          },
          {
            "_id": null,
            "model": "initiate master data service provider hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "junos 14.2r4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.4"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.11"
          },
          {
            "_id": null,
            "model": "powerkvm build",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1.157"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1.1"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager sdk",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.0"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "16.1"
          },
          {
            "_id": null,
            "model": "junos 12.1x47-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "junos d25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.8"
          },
          {
            "_id": null,
            "model": "sparc enterprise m8000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1117"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.17"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.24"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.37"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "vcx products",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "0"
          },
          {
            "_id": null,
            "model": "qradar incident forensics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "aura application server sip core pb3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3.10"
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3381m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0f",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational developer for i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "project openssl d",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "flashsystem 9843-ae2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "840"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.9"
          },
          {
            "_id": null,
            "model": "sparc enterprise m3000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1117"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264cs",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.8.12.0"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2.0.5"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1.0.5"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11.17.02",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.11"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.01"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.2"
          },
          {
            "_id": null,
            "model": "sparc enterprise m9000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1118"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.6"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.6"
          },
          {
            "_id": null,
            "model": "aura system manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.1.5"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.03"
          },
          {
            "_id": null,
            "model": "forticlient ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.5.0.3"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.41"
          },
          {
            "_id": null,
            "model": "forticlient android",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.2.6"
          },
          {
            "_id": null,
            "model": "project openssl f",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.2.2"
          },
          {
            "_id": null,
            "model": "sterling b2b integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.41"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23.07.04",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8052",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.14.0"
          },
          {
            "_id": null,
            "model": "initiate master data service patient hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "aura conferencing sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.14"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1d",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.13"
          },
          {
            "_id": null,
            "model": "abyp-4tl-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1.0.7"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.11"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0p",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.12"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d40",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.09"
          },
          {
            "_id": null,
            "model": "rational developer for aix and linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.1.0.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0n",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.2.0.3"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.25"
          },
          {
            "_id": null,
            "model": "rational developer for i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1"
          },
          {
            "_id": null,
            "model": "junos 15.1x49-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "insight control",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.3.1"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.1.0.9"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "sterling connect:direct for hp nonstop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.010"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "abyp-4t-0s-0l-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.41"
          },
          {
            "_id": null,
            "model": "aura application server sip core",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5008-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.3"
          },
          {
            "_id": null,
            "model": "aura experience portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "aura experience portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.3.0.12"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "flashsystem 9848-ac0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.13"
          },
          {
            "_id": null,
            "model": "linux -current",
            "scope": null,
            "trust": 0.3,
            "vendor": "slackware",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1b",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0k",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "bladesystem c-class virtual connect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.62"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35006.2"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "cognos metrics manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "aura system platform sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "infosphere master data management standard/advanced edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "11.4"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.4"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.0.5"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "junos 12.3x48-d30",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security privileged identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "sterling connect:direct for hp nonstop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.6"
          },
          {
            "_id": null,
            "model": "aura utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.12"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.0.4"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.9"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3379"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.5"
          },
          {
            "_id": null,
            "model": "junos 13.2x51-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.16"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "endpoint manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.8"
          },
          {
            "_id": null,
            "model": "aura conferencing sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.05"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.1.0.7"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.5.0.2"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.0.2"
          },
          {
            "_id": null,
            "model": "junos 15.1x49-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "fortiauthenticator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura messaging sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "iq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.7"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.3.0.5"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.4"
          },
          {
            "_id": null,
            "model": "sparc enterprise m5000 xcp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1117"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "15.04"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-05",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "security network controller 1.0.3361m",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1a",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 12.1x47-d25",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.13"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.0.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.2"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "ascenlink",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.16"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d35",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "sterling integrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "netscaler t1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8zb",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0.0.9"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.4.0.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "junos 13.3r6",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.4"
          },
          {
            "_id": null,
            "model": "aura system platform sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8w",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 12.1x47-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.4"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "flashsystem 9843-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "840"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.27"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0m",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1g",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "communications security gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "tivoli composite application manager for transactions",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "junos 12.3x48-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "flashsystem 9848-ae1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.5"
          },
          {
            "_id": null,
            "model": "qradar siem patch ifix01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.44"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.16"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.5"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.210"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.9"
          },
          {
            "_id": null,
            "model": "security appscan enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.913"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8316",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.14.0"
          },
          {
            "_id": null,
            "model": "security appscan enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.00"
          },
          {
            "_id": null,
            "model": "filenet system monitor interim fix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5.0.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.2.0.8"
          },
          {
            "_id": null,
            "model": "junos 12.3r2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "mobilefirst platform foundation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.3.0.0"
          },
          {
            "_id": null,
            "model": "screenos 6.3.0r21",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4.19"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.4.6"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.9"
          },
          {
            "_id": null,
            "model": "aura communication manager ssp04",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8r",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "power hmc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.0.0"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "tealeaf customer experience",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.4.1.8"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "general parallel file system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.0"
          },
          {
            "_id": null,
            "model": "cognos insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise content management system monitor interim fix",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.1.0.3"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8p",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 13.3r4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.5"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "8.54"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix ifix03",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.5.0.3"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.5"
          },
          {
            "_id": null,
            "model": "fortios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "5.0.8"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.18"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.06"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d55",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d30.4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.1.6"
          },
          {
            "_id": null,
            "model": "junos d20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.07"
          },
          {
            "_id": null,
            "model": "rational developer for i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "bladesystem c-class virtual connect",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.50"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.8"
          },
          {
            "_id": null,
            "model": "abyp-10g-4lr-1-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.3.6"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.13"
          },
          {
            "_id": null,
            "model": "sparc enterprise m9000 xcp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "rational application developer for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv200",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "qradar siem mr2 patch ifi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.110"
          },
          {
            "_id": null,
            "model": "infosphere guardium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1c",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.1768"
          },
          {
            "_id": null,
            "model": "abyp-0t-0s-4l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "unified security management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8v"
          },
          {
            "_id": null,
            "model": "abyp-4t-0s-0l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11.13.14",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.15"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2.4"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.0.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.9"
          },
          {
            "_id": null,
            "model": "cognos metrics manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.1.7"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3"
          },
          {
            "_id": null,
            "model": "rational developer for aix and linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "abyp-0t-2s-2l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.34"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "screenos 6.3.0r12",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.8"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70006.3"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.211"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.64"
          },
          {
            "_id": null,
            "model": "rational software architect for websphere software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "aura system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.2.8"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.14"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8l",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.13"
          },
          {
            "_id": null,
            "model": "project openssl h",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "12.1.0.2.0"
          },
          {
            "_id": null,
            "model": "san volume controller",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.3.0.12"
          },
          {
            "_id": null,
            "model": "project openssl i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "junos 13.2x51-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "bladesystem c-class virtual connect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.45"
          },
          {
            "_id": null,
            "model": "workload deployer",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.17"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.18"
          },
          {
            "_id": null,
            "model": "junos 14.2r2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0i",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "_id": null,
            "model": "flashsystem 9846-ac0",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v840"
          },
          {
            "_id": null,
            "model": "storwize unified",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70001.5.2.0"
          },
          {
            "_id": null,
            "model": "security privileged identity manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.0.1.11"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.16"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.21"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.13"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.0"
          },
          {
            "_id": null,
            "model": "virtual connect enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8332",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.7.21.0"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.5"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.010"
          },
          {
            "_id": null,
            "model": "project openssl c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "junos 12.3r3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aura collaboration environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.15"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "rational insight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.12"
          },
          {
            "_id": null,
            "model": "sparc enterprise m3000 xcp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1121"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "aura conferencing",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.26"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5108-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "sdk for node.js",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.6"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.3"
          },
          {
            "_id": null,
            "model": "security appscan enterprise",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.5"
          },
          {
            "_id": null,
            "model": "junos d35",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50007.3"
          },
          {
            "_id": null,
            "model": "unified security management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.15"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.2.0.2"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "7"
          },
          {
            "_id": null,
            "model": "qradar siem mr1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.37"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx3002",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d40",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.1.0.2"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.0j",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.211"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gv1000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "junos 12.1x46-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.5"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.9"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.3"
          },
          {
            "_id": null,
            "model": "infosphere information server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "aura presence services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.2.0.2"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2.0.3"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.0.0"
          },
          {
            "_id": null,
            "model": "project openssl",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.19"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1j",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "cloudbridge",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "0"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37006.4.1.8"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx6116",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "sonas",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.5.0.1"
          },
          {
            "_id": null,
            "model": "junos 12.3x48-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.3.0.5"
          },
          {
            "_id": null,
            "model": "abyp-2t-2s-0l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10.1.0.3"
          },
          {
            "_id": null,
            "model": "security network controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.0.3381"
          },
          {
            "_id": null,
            "model": "rational software architect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.15"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.3.6"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.1.0.6"
          },
          {
            "_id": null,
            "model": "abyp-4ts-p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.02"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.23"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "infosphere information server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "junos 12.3r11",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v50006.1"
          },
          {
            "_id": null,
            "model": "aura presence services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.0.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp1 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "5"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.0"
          },
          {
            "_id": null,
            "model": "screenos 6.3.0r20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7412-10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10"
          },
          {
            "_id": null,
            "model": "junos 13.3r7",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "cognos insight standard edition fp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "10.2.24"
          },
          {
            "_id": null,
            "model": "forticache",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "messagesight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "aura application server sip core sp10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "53003.0"
          },
          {
            "_id": null,
            "model": "linux x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.37"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8zd",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "worklight enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.0.2"
          },
          {
            "_id": null,
            "model": "junos 14.1r5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "websphere mq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.2"
          },
          {
            "_id": null,
            "model": "initiate master data service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.11"
          },
          {
            "_id": null,
            "model": "project openssl 1.0.1k",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0.0.9"
          },
          {
            "_id": null,
            "model": "version control agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx5208-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "project openssl 0.9.8o",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5.6.16"
          },
          {
            "_id": null,
            "model": "server migration pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5.1"
          },
          {
            "_id": null,
            "model": "project openssl e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssl",
            "version": "0.9.8"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.0.1.2"
          },
          {
            "_id": null,
            "model": "version control repository manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.33"
          },
          {
            "_id": null,
            "model": "sterling connect:enterprise for unix ifix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.5.0.37"
          },
          {
            "_id": null,
            "model": "matrix operating environment",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "qradar siem patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.43"
          },
          {
            "_id": null,
            "model": "ip office server edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "worklight foundation enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.2.0.1"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "predictiveinsight",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "junos 12.1x44-d35.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.5"
          },
          {
            "_id": null,
            "model": "tivoli common reporting",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1.3"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.3.3.1"
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.9"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1.4"
          },
          {
            "_id": null,
            "model": "datapower gateways",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "systems insight manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx7800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "security network intrusion prevention system gx4004-v2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "rational clearcase",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "open source siem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "alienvault",
            "version": "4.14"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "communication server 1000m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "infosphere information server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8.7"
          },
          {
            "_id": null,
            "model": "operations agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.12"
          },
          {
            "_id": null,
            "model": "insight orchestration",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "junos 14.2r3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "rational clearquest",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.2.10"
          },
          {
            "_id": null,
            "model": "icewall mcrp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "abyp-2t-0s-2l-p-m",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v37007.1"
          },
          {
            "_id": null,
            "model": "system networking rackswitch g8264",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.9.14.0"
          },
          {
            "_id": null,
            "model": "rational requisitepro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1.32"
          },
          {
            "_id": null,
            "model": "junos 13.2x51-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v35007.2.0.8"
          },
          {
            "_id": null,
            "model": "communication server 1000m signaling server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "rational team concert",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "storwize",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "v70007.2.0.8"
          },
          {
            "_id": null,
            "model": "communication server 1000e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "qradar siem mr2 patch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.19"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "75156"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1789"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:openssl:openssl",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:mysql",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:e-business_suite",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:fusion_middleware",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:peoplesoft_products",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:supply_chain_products_suite",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:primavera_p6_enterprise_project_portfolio_management",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:xcp",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:insight_control",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:matrix_operating_environment",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:server_migration_pack",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:systems_insight_manager",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:version_control_repository_manager",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:hp:system_management_homepage",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:capssuite",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:enterprise_directoryserver",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:express5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_1200",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_1210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_3000",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_3500",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_5000",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_810",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ip38x_fw120",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:istorage",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ix2000",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:ix3000",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:secureware_pki_application_development_kit",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:nec:univerge",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:webotx",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:webotx_application_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:webotx_enterprise_service_bus",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:webotx_portal",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:webotx_sip_application_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:nec:websam",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Robert Swiecki(Google) and Hanno B\u0026amp;amp;amp;amp;amp;amp;amp;amp;amp;amp;amp;amp;amp;ouml;ck.",
        "sources": [
          {
            "db": "BID",
            "id": "75156"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2015-1789",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2015-1789",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.9,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2015-1789",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.8,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-1789",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2015-1789",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "VULMON",
                "id": "CVE-2015-1789",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-1789"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1789"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted length field in ASN1_TIME data, as demonstrated by an attack against a server that supports client authentication with a custom verification callback. OpenSSL is prone to denial-of-service vulnerability. \nAn attacker may exploit this issue to cause a denial-of-service condition. \nThe following are vulnerable:\nOpenSSL 1.0.2 prior to 1.0.2b\nOpenSSL 1.0.1 prior to 1.0.1n\nOpenSSL 1.0.0 prior to 1.0.0s\nOpenSSL 0.9.8 prior to 0.9.8zg. OpenSSL Security Advisory [11 Jun 2015]\n=======================================\n\nDHE man-in-the-middle protection (Logjam)\n====================================================================\n\nA vulnerability in the TLS protocol allows a man-in-the-middle\nattacker to downgrade vulnerable TLS connections using ephemeral\nDiffie-Hellman key exchange to 512-bit export-grade cryptography. This\nvulnerability is known as Logjam (CVE-2015-4000). \n\nOpenSSL has added protection for TLS clients by rejecting handshakes\nwith DH parameters shorter than 768 bits. This limit will be increased\nto 1024 bits in a future release. \n\nMalformed ECParameters causes infinite loop (CVE-2015-1788)\n===========================================================\n\nSeverity: Moderate\n\nWhen processing an ECParameters structure OpenSSL enters an infinite loop if\nthe curve specified is over a specially malformed binary polynomial field. \n\nThis can be used to perform denial of service against any\nsystem which processes public keys, certificate requests or\ncertificates.  This includes TLS clients and TLS servers with\nclient authentication enabled. \n\nThis issue affects OpenSSL versions: 1.0.2 and 1.0.1. Recent\n1.0.0 and 0.9.8 versions are not affected. 1.0.0d and 0.9.8r and below are\naffected. \n\nOpenSSL 1.0.2 users should upgrade to 1.0.2b\nOpenSSL 1.0.1 users should upgrade to 1.0.1n\nOpenSSL 1.0.0d (and below) users should upgrade to 1.0.0s\nOpenSSL 0.9.8r (and below) users should upgrade to 0.9.8zg\n\nThis issue was reported to OpenSSL on 6th April 2015 by Joseph Birr-Pixton. The\nfix was developed by Andy Polyakov of the OpenSSL development team. \n\nExploitable out-of-bounds read in X509_cmp_time (CVE-2015-1789)\n===============================================================\n\nSeverity: Moderate\n\nX509_cmp_time does not properly check the length of the ASN1_TIME\nstring and can read a few bytes out of bounds. In addition,\nX509_cmp_time accepts an arbitrary number of fractional seconds in the\ntime string. \n\nAn attacker can use this to craft malformed certificates and CRLs of\nvarious sizes and potentially cause a segmentation fault, resulting in\na DoS on applications that verify certificates or CRLs. TLS clients\nthat verify CRLs are affected. TLS clients and servers with client\nauthentication enabled may be affected if they use custom verification\ncallbacks. \n\nThis issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8. \n\nOpenSSL 1.0.2 users should upgrade to 1.0.2b\nOpenSSL 1.0.1 users should upgrade to 1.0.1n\nOpenSSL 1.0.0 users should upgrade to 1.0.0s\nOpenSSL 0.9.8 users should upgrade to 0.9.8zg\n\nThis issue was reported to OpenSSL on 8th April 2015 by Robert Swiecki\n(Google), and independently on 11th April 2015 by Hanno B\u00f6ck. The fix\nwas developed by Emilia K\u00e4sper of the OpenSSL development team. \n\nPKCS7 crash with missing EnvelopedContent (CVE-2015-1790)\n=========================================================\n\nSeverity: Moderate\n\nThe PKCS#7 parsing code does not handle missing inner EncryptedContent\ncorrectly. An attacker can craft malformed ASN.1-encoded PKCS#7 blobs\nwith missing content and trigger a NULL pointer dereference on parsing. \n\nApplications that decrypt PKCS#7 data or otherwise parse PKCS#7\nstructures from untrusted sources are affected. OpenSSL clients and\nservers are not affected. \n\nThis issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8. \n\nOpenSSL 1.0.2 users should upgrade to 1.0.2b\nOpenSSL 1.0.1 users should upgrade to 1.0.1n\nOpenSSL 1.0.0 users should upgrade to 1.0.0s\nOpenSSL 0.9.8 users should upgrade to 0.9.8zg\n\nThis issue was reported to OpenSSL on 18th April 2015 by  Michal\nZalewski (Google). The fix was developed by Emilia K\u00e4sper of the\nOpenSSL development team. \n\nThis can be used to perform denial of service against any system which\nverifies signedData messages using the CMS code. \n\nThis issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8. \n\nOpenSSL 1.0.2 users should upgrade to 1.0.2b\nOpenSSL 1.0.1 users should upgrade to 1.0.1n\nOpenSSL 1.0.0 users should upgrade to 1.0.0s\nOpenSSL 0.9.8 users should upgrade to 0.9.8zg\n\nThis issue was reported to OpenSSL on 31st March 2015 by Johannes Bauer. The\nfix was developed by Dr. Stephen Henson of the OpenSSL development team. \n\nThis issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8. The\nfix was developed by Matt Caswell of the OpenSSL development team. It\nexisted in previous OpenSSL versions and was fixed in June 2014. \n\nIf a DTLS peer receives application data between the ChangeCipherSpec\nand Finished messages, buffering of such data may cause an invalid\nfree, resulting in a segmentation fault or potentially, memory\ncorruption. \n\nThis issue affected older OpenSSL versions 1.0.1, 1.0.0 and 0.9.8. \n\nOpenSSL 0.9.8 DTLS users should upgrade to 0.9.8za\nOpenSSL 1.0.0 DTLS users should upgrade to 1.0.0m. \nOpenSSL 1.0.1 DTLS users should upgrade to 1.0.1h. \n\nThis issue was originally reported on March 28th 2014 in\nhttps://rt.openssl.org/Ticket/Display.html?id=3286 by Praveen\nKariyanahalli, and subsequently by Ivan Fratric and Felix Groebert\n(Google). A fix was developed by zhu qun-ying. \n\nThe fix for this issue can be identified by commits bcc31166 (1.0.1),\nb79e6e3a (1.0.0) and 4b258e73 (0.9.8). \n\nNote\n====\n\nAs per our previous announcements and our Release Strategy\n(https://www.openssl.org/about/releasestrat.html), support for OpenSSL versions\n1.0.0 and 0.9.8 will cease on 31st December 2015. No security updates for these\nreleases will be provided after that date. Users of these releases are advised\nto upgrade. \n\nReferences\n==========\n\nURL for this Security Advisory:\nhttps://www.openssl.org/news/secadv_20150611.txt\n\nNote: the online version of the advisory may be updated with additional\ndetails over time. \n\nFor details of OpenSSL severity classifications please see:\nhttps://www.openssl.org/about/secpolicy.html\n\n. These vulnerabilities\ninclude:\n\nThe SSLv3 vulnerability known as \"Padding Oracle on Downgraded Legacy\nEncryption\" also known as \"POODLE\", which could be exploited remotely\nresulting in disclosure of information. \nThe following firmware versions of Virtual Connect (VC) are impacted:\n\nHPE BladeSystem c-Class Virtual Connect (VC) Firmware 4.30 through VC 4.45\nHPE BladeSystem c-Class Virtual Connect (VC) Firmware 3.62 through VC 4.21\n\nNote: Firmware versions 3.62 through 4.21 are not impacted by CVE-2016-0800,\nCVE-2015-3194, CVE-2014-3566, CVE-2015-0705, CVE-2016-0799, and\nCVE-2016-2842. \n\nRelease Date: 2015-07-10\nLast Updated: 2015-07-10\n\nPotential Security Impact: Remote Denial of Service (DoS)\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP IceWall\nProducts running OpenSSL. \nProduct\n Impacted Versions\n Impacted CVEs\n\nHP IceWall MCRP\n v3.0\n CVE-2015-1789\nCVE-2015-1790\nCVE-2015-1792\n\nHP IceWall SSO Dfw\n v10.0\n CVE-2015-1789\nCVE-2015-1790\nCVE-2015-1792\n\nHP IceWall SSO Agent Option\n v10.0\n CVE-2015-1789\nCVE-2015-1790\nCVE-2015-1792\n\nHP IceWall SSO Certd\n v10.0\n CVE-2015-1792\n\nHP IceWall Federation Agent\n v3.0\n CVE-2015-1792\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2015-1789    (AV:N/AC:M/Au:N/C:N/I:N/A:P)       4.3\nCVE-2015-1790    (AV:N/AC:L/Au:N/C:N/I:N/A:P)       5.0\nCVE-2015-1792    (AV:N/AC:L/Au:N/C:N/I:N/A:P)       5.0\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP recommends applying the latest OS vendor security patches for OpenSSL to\nresolve the vulnerabilities for HP IceWall Products. \n\n  HP IceWall SSO Dfw v10.0 and Certd v10.0, which are running on RHEL, could\nbe using either the OS bundled OpenSSL library or the OpenSSL bundled with HP\nIceWall. If still using the OpenSSL bundled with HP IceWall, please apply the\nlatest OS vendor security patches for OpenSSL and switch to the OpenSSL\nlibrary bundled with the OS. \n\n  Documents are available at the following location with instructions to\nswitch to the OS bundled OpenSSL library:\n\n    http://www.hp.com/jp/icewall_patchaccess\n\n  Note: The HP IceWall product is only available in Japan. \n\nHISTORY\nVersion:1 (rev.1) - 10 July 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. This\n    could allow remote attackers to cause a denial of service. This could allow remote attackers to cause\n    a denial of service (crash). This could allow remote attackers to cause\n    a denial of service. \n\nFor the oldstable distribution (wheezy), these problems have been fixed\nin version 1.0.1e-2+deb7u17. \n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 1.0.1k-3+deb8u1. \n\nFor the testing distribution (stretch), these problems have been fixed\nin version 1.0.2b-1. \n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.0.2b-1. \nCorrected:      2015-06-11 19:07:45 UTC (stable/10, 10.1-STABLE)\n                2015-06-12 07:23:55 UTC (releng/10.1, 10.1-RELEASE-p12)\n                2015-06-11 19:39:27 UTC (stable/9, 9.3-STABLE)\n                2015-06-12 07:23:55 UTC (releng/9.3, 9.3-RELEASE-p16)\n                2015-06-11 19:39:27 UTC (stable/8, 8.4-STABLE)\n                2015-06-12 07:23:55 UTC (releng/8.4, 8.4-RELEASE-p30)\nCVE Name:       CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791\n                CVE-2015-1792, CVE-2015-4000\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:https://security.FreeBSD.org/\u003e.   Background\n\nFreeBSD includes software from the OpenSSL Project. \n\nII. [CVE-2015-1791]\n\nThe OpenSSL advisory also describes a problem that is identified as\nCVE-2014-8176, which is already fixed by an earlier FreeBSD Errata\nNotice, FreeBSD-EN-15:02.openssl. \n\nIII. [CVE-2015-4000]. \n[CVE-2015-1788].  This affects FreeBSD 10.1 only, as the problem\nwas no longer exist in OpenSSL 0.9.8 series since July 2012. [CVE-2015-1790]. [CVE-2015-1792]\n\nAn attacker may be able to crash multi-thread applications that\nsupports resumed TLS handshakes. [CVE-2015-1791]\n\nIV.  Workaround\n\nNo workaround is available. \n\nV.   Solution\n\nPerform one of the following:\n\n1) Upgrade your vulnerable system to a supported FreeBSD stable or\nrelease / security branch (releng) dated after the correction date. \n\n2) To update your vulnerable system via a binary patch:\n\nSystems running a RELEASE version of FreeBSD on the i386 or amd64\nplatforms can be updated via the freebsd-update(8) utility:\n\n# freebsd-update fetch\n# freebsd-update install\n\n3) To update your vulnerable system via a source code patch:\n\nThe following patches have been verified to apply to the applicable\nFreeBSD release branches. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n[FreeBSD 10.1]\n# fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-10.1.patch\n# fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-10.1.patch.asc\n# gpg --verify openssl-10.1.patch.asc\n\n[FreeBSD 9.3 and 8.4]\n# fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-8.4.patch\n# fetch https://security.FreeBSD.org/patches/SA-15:10/openssl-8.4.patch.asc\n# gpg --verify openssl-8.4.patch.asc\n\nb) Apply the patch.  Execute the following commands as root:\n\n# cd /usr/src\n# patch \u003c /path/to/patch\n\nc) Recompile the operating system using buildworld and installworld as\ndescribed in \u003cURL:https://www.FreeBSD.org/handbook/makeworld.html\u003e. \n\nRestart all deamons using the library, or reboot the system. \n\nVI.  Correction details\n\nThe following list contains the correction revision numbers for each\naffected branch. \n\nBranch/path                                                      Revision\n- -------------------------------------------------------------------------\nstable/8/                                                         r284286\nreleng/8.4/                                                       r284295\nstable/9/                                                         r284286\nreleng/9.3/                                                       r284295\nstable/10/                                                        r284285\nreleng/10.1/                                                      r284295\n- -------------------------------------------------------------------------\n\nTo see which files were modified by a particular revision, run the\nfollowing command, replacing NNNNNN with the revision number, on a\nmachine with Subversion installed:\n\n# svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base\n\nOr visit the following URL, replacing NNNNNN with the revision number:\n\n\u003cURL:https://svnweb.freebsd.org/base?view=revision\u0026revision=NNNNNN\u003e\n\nVII. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: openssl security update\nAdvisory ID:       RHSA-2015:1115-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2015-1115.html\nIssue date:        2015-06-15\nCVE Names:         CVE-2014-8176 CVE-2015-1789 CVE-2015-1790 \n                   CVE-2015-1791 CVE-2015-1792 CVE-2015-3216 \n=====================================================================\n\n1. Summary:\n\nUpdated openssl packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 6 and 7. \n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. Description:\n\nOpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3)\nand Transport Layer Security (TLS v1) protocols, as well as a\nfull-strength, general purpose cryptography library. \n\nAn invalid free flaw was found in the way OpenSSL handled certain DTLS\nhandshake messages. A malicious DTLS client or server could cause a DTLS\nserver or client using OpenSSL to crash or, potentially, execute arbitrary\ncode. (CVE-2014-8176)\n\nA flaw was found in the way the OpenSSL packages shipped with Red Hat\nEnterprise Linux 6 and 7 performed locking in the ssleay_rand_bytes()\nfunction. (CVE-2015-3216)\n\nAn out-of-bounds read flaw was found in the X509_cmp_time() function of\nOpenSSL. A specially crafted X.509 certificate or a Certificate Revocation\nList (CRL) could possibly cause a TLS/SSL server or client using OpenSSL\nto crash. (CVE-2015-1789)\n\nA race condition was found in the session handling code of OpenSSL. This\nissue could possibly cause a multi-threaded TLS/SSL client using OpenSSL\nto double free session ticket data and crash. (CVE-2015-1791)\n\nA flaw was found in the way OpenSSL handled Cryptographic Message Syntax\n(CMS) messages. A CMS message with an unknown hash function identifier\ncould cause an application using OpenSSL to enter an infinite loop. \n(CVE-2015-1792)\n\nA NULL pointer dereference was found in the way OpenSSL handled certain\nPKCS#7 inputs. A specially crafted PKCS#7 input with missing\nEncryptedContent data could cause an application using OpenSSL to crash. \n(CVE-2015-1790)\n\nRed Hat would like to thank the OpenSSL project for reporting\nCVE-2014-8176, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791 and\nCVE-2015-1792 flaws. Upstream acknowledges Praveen Kariyanahalli and Ivan\nFratric as the original reporters of CVE-2014-8176, Robert Swiecki and\nHanno B\u00f6ck as the original reporters of CVE-2015-1789, Michal Zalewski as\nthe original reporter of CVE-2015-1790, Emilia K\u00e4sper as the original\nreport of  CVE-2015-1791 and Johannes Bauer as the original reporter of\nCVE-2015-1792. \n\nAll openssl users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. For the update to take\neffect, all services linked to the OpenSSL library must be restarted, or\nthe system rebooted. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1227574 - CVE-2015-3216 openssl: Crash in ssleay_rand_bytes due to locking regression\n1228603 - CVE-2015-1789 OpenSSL: out-of-bounds read in X509_cmp_time\n1228604 - CVE-2015-1790 OpenSSL: PKCS7 crash with missing EnvelopedContent\n1228607 - CVE-2015-1792 OpenSSL: CMS verify infinite loop with unknown hash function\n1228608 - CVE-2015-1791 OpenSSL: Race condition handling NewSessionTicket\n1228611 - CVE-2014-8176 OpenSSL: Invalid free in DTLS\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.11.src.rpm\n\ni386:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\ni386:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-static-1.0.1e-30.el6_6.11.i686.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.11.src.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.11.src.rpm\n\ni386:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\n\nppc64:\nopenssl-1.0.1e-30.el6_6.11.ppc.rpm\nopenssl-1.0.1e-30.el6_6.11.ppc64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.ppc.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.ppc64.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.ppc.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.ppc64.rpm\n\ns390x:\nopenssl-1.0.1e-30.el6_6.11.s390.rpm\nopenssl-1.0.1e-30.el6_6.11.s390x.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.s390.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.s390x.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.s390.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.s390x.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-static-1.0.1e-30.el6_6.11.i686.rpm\n\nppc64:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.ppc64.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.ppc64.rpm\nopenssl-static-1.0.1e-30.el6_6.11.ppc64.rpm\n\ns390x:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.s390x.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.s390x.rpm\nopenssl-static-1.0.1e-30.el6_6.11.s390x.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nopenssl-1.0.1e-30.el6_6.11.src.rpm\n\ni386:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\n\nx86_64:\nopenssl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-devel-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.i686.rpm\nopenssl-static-1.0.1e-30.el6_6.11.i686.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-perl-1.0.1e-30.el6_6.11.x86_64.rpm\nopenssl-static-1.0.1e-30.el6_6.11.x86_64.rpm\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nopenssl-1.0.1e-42.el7_1.8.src.rpm\n\nx86_64:\nopenssl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-static-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-static-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nopenssl-1.0.1e-42.el7_1.8.src.rpm\n\nx86_64:\nopenssl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-static-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-static-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nopenssl-1.0.1e-42.el7_1.8.src.rpm\n\nppc64:\nopenssl-1.0.1e-42.el7_1.8.ppc64.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.ppc.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.ppc64.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.ppc.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.ppc64.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.ppc.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.ppc64.rpm\n\ns390x:\nopenssl-1.0.1e-42.el7_1.8.s390x.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.s390.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.s390x.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.s390.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.s390x.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.s390.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.s390x.rpm\n\nx86_64:\nopenssl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nopenssl-1.0.1e-42.ael7b_1.8.src.rpm\n\nppc64le:\nopenssl-1.0.1e-42.ael7b_1.8.ppc64le.rpm\nopenssl-debuginfo-1.0.1e-42.ael7b_1.8.ppc64le.rpm\nopenssl-devel-1.0.1e-42.ael7b_1.8.ppc64le.rpm\nopenssl-libs-1.0.1e-42.ael7b_1.8.ppc64le.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nopenssl-debuginfo-1.0.1e-42.el7_1.8.ppc.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.ppc64.rpm\nopenssl-perl-1.0.1e-42.el7_1.8.ppc64.rpm\nopenssl-static-1.0.1e-42.el7_1.8.ppc.rpm\nopenssl-static-1.0.1e-42.el7_1.8.ppc64.rpm\n\ns390x:\nopenssl-debuginfo-1.0.1e-42.el7_1.8.s390.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.s390x.rpm\nopenssl-perl-1.0.1e-42.el7_1.8.s390x.rpm\nopenssl-static-1.0.1e-42.el7_1.8.s390.rpm\nopenssl-static-1.0.1e-42.el7_1.8.s390x.rpm\n\nx86_64:\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-static-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-static-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64le:\nopenssl-debuginfo-1.0.1e-42.ael7b_1.8.ppc64le.rpm\nopenssl-perl-1.0.1e-42.ael7b_1.8.ppc64le.rpm\nopenssl-static-1.0.1e-42.ael7b_1.8.ppc64le.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nopenssl-1.0.1e-42.el7_1.8.src.rpm\n\nx86_64:\nopenssl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-devel-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-libs-1.0.1e-42.el7_1.8.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nopenssl-debuginfo-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-debuginfo-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-perl-1.0.1e-42.el7_1.8.x86_64.rpm\nopenssl-static-1.0.1e-42.el7_1.8.i686.rpm\nopenssl-static-1.0.1e-42.el7_1.8.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2014-8176\nhttps://access.redhat.com/security/cve/CVE-2015-1789\nhttps://access.redhat.com/security/cve/CVE-2015-1790\nhttps://access.redhat.com/security/cve/CVE-2015-1791\nhttps://access.redhat.com/security/cve/CVE-2015-1792\nhttps://access.redhat.com/security/cve/CVE-2015-3216\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://www.openssl.org/news/secadv_20150611.txt\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFVf0NNXlSAg2UNWIIRArL4AJ9e7lbD/4Nks5midR5o3E4Bs5lQWQCgnrvk\nZyXizCcFL9oAQexObjxp/Mo=\n=PXiY\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-1789"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          },
          {
            "db": "BID",
            "id": "75156"
          },
          {
            "db": "VULMON",
            "id": "CVE-2015-1789"
          },
          {
            "db": "PACKETSTORM",
            "id": "169629"
          },
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "132637"
          },
          {
            "db": "PACKETSTORM",
            "id": "132291"
          },
          {
            "db": "PACKETSTORM",
            "id": "132288"
          },
          {
            "db": "PACKETSTORM",
            "id": "132313"
          },
          {
            "db": "PACKETSTORM",
            "id": "136989"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-1789",
            "trust": 2.9
          },
          {
            "db": "JUNIPER",
            "id": "JSA10733",
            "trust": 1.4
          },
          {
            "db": "JUNIPER",
            "id": "JSA10694",
            "trust": 1.4
          },
          {
            "db": "BID",
            "id": "75156",
            "trust": 1.4
          },
          {
            "db": "BID",
            "id": "91787",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-412672",
            "trust": 1.1
          },
          {
            "db": "MCAFEE",
            "id": "SB10122",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1032564",
            "trust": 1.1
          },
          {
            "db": "JVN",
            "id": "JVNVU91445763",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081",
            "trust": 0.8
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-349-21",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2015-1789",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "169629",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137294",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132637",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132291",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132288",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132313",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "136989",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-1789"
          },
          {
            "db": "BID",
            "id": "75156"
          },
          {
            "db": "PACKETSTORM",
            "id": "169629"
          },
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "132637"
          },
          {
            "db": "PACKETSTORM",
            "id": "132291"
          },
          {
            "db": "PACKETSTORM",
            "id": "132288"
          },
          {
            "db": "PACKETSTORM",
            "id": "132313"
          },
          {
            "db": "PACKETSTORM",
            "id": "136989"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1789"
          }
        ]
      },
      "id": "VAR-201506-0498",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.1575688975
      },
      "last_update_date": "2026-04-10T23:17:27.032000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html"
          },
          {
            "title": "HT205031",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT205031"
          },
          {
            "title": "HT205031",
            "trust": 0.8,
            "url": "https://support.apple.com/ja-jp/HT205031"
          },
          {
            "title": "cisco-sa-20150612-openssl",
            "trust": 0.8,
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150612-openssl"
          },
          {
            "title": "Fix length checks in X509_cmp_time to avoid out-of-bounds reads.",
            "trust": 0.8,
            "url": "https://github.com/openssl/openssl/commit/f48b83b4fb7d6689584cf25f61ca63a4891f5b11"
          },
          {
            "title": "HPSBUX03388",
            "trust": 0.8,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=143880121627664\u0026amp;w=2"
          },
          {
            "title": "HPSBMU03612",
            "trust": 0.8,
            "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05158380"
          },
          {
            "title": "HPSBHF03613",
            "trust": 0.8,
            "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05184351"
          },
          {
            "title": "HPSBMU03546",
            "trust": 0.8,
            "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05045763"
          },
          {
            "title": "HPSBMU03611",
            "trust": 0.8,
            "url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05150888"
          },
          {
            "title": "\u30a2\u30e9\u30a4\u30c9\u30c6\u30ec\u30b7\u30b9\u682a\u5f0f\u4f1a\u793e\u304b\u3089\u306e\u60c5\u5831",
            "trust": 0.8,
            "url": "http://jvn.jp/vu/JVNVU91445763/522154/index.html"
          },
          {
            "title": "NV15-010",
            "trust": 0.8,
            "url": "http://jpn.nec.com/security-info/secinfo/nv15-010.html"
          },
          {
            "title": "OpenSSL vulnerabilities",
            "trust": 0.8,
            "url": "https://www.openssl.org/news/vulnerabilities.html"
          },
          {
            "title": "Tarballs",
            "trust": 0.8,
            "url": "https://www.openssl.org/source/"
          },
          {
            "title": "[11 Jun 2015] DHE man-in-the-middle protection (Logjam)",
            "trust": 0.8,
            "url": "https://www.openssl.org/news/secadv_20150611.txt"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - October 2015",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - April 2016 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2016verbose-2881709.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - October 2015 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015verbose-2367954.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - July 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - January 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - July 2016 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2016verbose-2881721.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - January 2016 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016verbose-2367956.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - April 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
          },
          {
            "title": "Oracle Critical Patch Update CVSS V2 Risk Matrices - April 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2016-2881694.html"
          },
          {
            "title": "Oracle Solaris Third Party Bulletin - July 2015",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
          },
          {
            "title": "April 2016 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/april_2016_critical_patch_update"
          },
          {
            "title": "October 2015 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/october_2015_critical_patch_update"
          },
          {
            "title": "July 2016 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/july_2016_critical_patch_update"
          },
          {
            "title": "January 2016 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/january_2016_critical_patch_update"
          },
          {
            "title": "JSA10694",
            "trust": 0.8,
            "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10694"
          },
          {
            "title": "TLSA-2015-14",
            "trust": 0.8,
            "url": "http://www.turbolinux.co.jp/security/2015/TLSA-2015-14j.html"
          },
          {
            "title": "cisco-sa-20150612-openssl",
            "trust": 0.8,
            "url": "http://www.cisco.com/cisco/web/support/JP/112/1129/1129443_cisco-sa-20150612-openssl-j.html"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2016/07/06/hpe_rushes_out_patch_for_more_than_a_year_of_openssl_vulns/"
          },
          {
            "title": "Red Hat: CVE-2015-1789",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2015-1789"
          },
          {
            "title": "Ubuntu Security Notice: openssl vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2639-1"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2015-550",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2015-550"
          },
          {
            "title": "Tenable Security Advisories: [R7] OpenSSL \u002720150611\u0027 Advisory Affects Tenable Products",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2015-07"
          },
          {
            "title": "Cisco: Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-20150612-openssl"
          },
          {
            "title": "Symantec Security Advisories: SA98 : OpenSSL Security Advisory 11-June-2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=a7350b0751124b5a44ba8dbd2df71f9f"
          },
          {
            "title": "Oracle Solaris Third Party Bulletins: Oracle Solaris Third Party Bulletin - July 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_solaris_third_party_bulletins\u0026qid=8b701aba68029ec36b631a8e26157a22"
          },
          {
            "title": "Citrix Security Bulletins: Multiple Security Vulnerabilities in Citrix NetScaler Platform IPMI Lights Out Management (LOM) firmware",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=eb059834b7f24e2562bcf592b6d0afbc"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - October 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=744c19dc9f4f70ad58059bf8733ec9c1"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - October 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=05aabe19d38058b7814ef5514aab4c0c"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - January 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=69e9536e77203a3c76b24dd89f4f9300"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - April 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=143b3fb255063c81571469eaa3cf0a87"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - October 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=523d3f220a64ff01dd95e064bd37566a"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - July 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=2f446a7e1ea263c0c3a365776c6713f2"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - April 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=122319027ae43d6d626710f1b1bb1d43"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=3a04485ebb79f7fbc2472bf9af5ce489"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - January 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=63802a6c83b107c4e6e0c7f9241a66a8"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Live-Hack-CVE/CVE-2015-1789 "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/khadas/android_external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/yaap/external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/crdroid-r/external_honggfuzz "
          },
          {
            "title": "tab_pie_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/CredenceID/tab_pie_external_honggfuzz "
          },
          {
            "title": "platform_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/DennissimOS/platform_external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/swordphoenix/external_honggfuzz "
          },
          {
            "title": "platform_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/aosp-caf-upstream/platform_external_honggfuzz "
          },
          {
            "title": "honggfuzz_READ",
            "trust": 0.1,
            "url": "https://github.com/imbaya2466/honggfuzz_READ "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/bananadroid/android_external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/ForkLineageOS/external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/TheXPerienceProject/android_external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/random-aosp-stuff/android_external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/Wave-Project/external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/Project-1CE/external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/jingpad-bsp/android_external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/crdroidandroid/android_external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/StatiXOS/android_external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/CAF-Extended/external_honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/Ozone-OS/external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/Corvus-R/android_external_honggfuzz "
          },
          {
            "title": "external-honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/TinkerBoard2-Android/external-honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/TinkerEdgeR-Android/external_honggfuzz "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/ep-infosec/50_google_honggfuzz "
          },
          {
            "title": "lllnx",
            "trust": 0.1,
            "url": "https://github.com/lllnx/lllnx "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/TinkerBoard2-Android/external_honggfuzz "
          },
          {
            "title": "external-honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/TinkerBoard-Android/external-honggfuzz "
          },
          {
            "title": "external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/HavocR/external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/ProtonAOSP-platina/android_external_honggfuzz "
          },
          {
            "title": "android_external_honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/ProtonAOSP/android_external_honggfuzz "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Tomoms/android_external_honggfuzz "
          },
          {
            "title": "honggfuzz",
            "trust": 0.1,
            "url": "https://github.com/google/honggfuzz "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-1789"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1789"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.6,
            "url": "https://www.openssl.org/news/secadv_20150611.txt"
          },
          {
            "trust": 1.5,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1115.html"
          },
          {
            "trust": 1.4,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10694"
          },
          {
            "trust": 1.4,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
          },
          {
            "trust": 1.4,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
          },
          {
            "trust": 1.4,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
          },
          {
            "trust": 1.4,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150612-openssl"
          },
          {
            "trust": 1.4,
            "url": "https://support.citrix.com/article/ctx216642"
          },
          {
            "trust": 1.2,
            "url": "http://www.securityfocus.com/bid/75156"
          },
          {
            "trust": 1.1,
            "url": "https://github.com/openssl/openssl/commit/f48b83b4fb7d6689584cf25f61ca63a4891f5b11"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce/2015/aug/msg00001.html"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht205031"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=143880121627664\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05157667"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05131044"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/91787"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05150888"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05158380"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05184351"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05045763"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=143654156615516\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=144050155601375\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html"
          },
          {
            "trust": 1.1,
            "url": "https://openssl.org/news/secadv/20150611.txt"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html"
          },
          {
            "trust": 1.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10733"
          },
          {
            "trust": 1.1,
            "url": "http://fortiguard.com/advisory/openssl-vulnerabilities-june-2015"
          },
          {
            "trust": 1.1,
            "url": "http://www.fortiguard.com/advisory/openssl-vulnerabilities-june-2015"
          },
          {
            "trust": 1.1,
            "url": "https://bto.bluecoat.com/security-advisory/sa98"
          },
          {
            "trust": 1.1,
            "url": "http://www.fortiguard.com/advisory/2015-06-11-fortinet-vulnerability-openssl-vulnerabilities-june-2015"
          },
          {
            "trust": 1.1,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05353965"
          },
          {
            "trust": 1.1,
            "url": "https://security.gentoo.org/glsa/201506-02"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html"
          },
          {
            "trust": 1.1,
            "url": "http://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2015-008.txt.asc"
          },
          {
            "trust": 1.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10122"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00007.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00006.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00005.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00004.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00026.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00024.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00023.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-june/160647.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-june/160436.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-2639-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1032564"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2015/dsa-3287"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1197.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1144-security-advisory-11"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1789"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu91445763/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-1789"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1789"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1792"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1790"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1791"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1788"
          },
          {
            "trust": 0.3,
            "url": "http://openssl.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022444"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962775"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21965845"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2015/aug/13"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10733\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "http://prod.lists.apple.com/archives/security-announce/2015/aug/msg00001.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2016-2881694.html"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04739301"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05353965"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05184351"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2015/aug/135"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05131044"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05157667"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05150888"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05158380"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022527"
          },
          {
            "trust": 0.3,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg3t1022724"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005313"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005376"
          },
          {
            "trust": 0.3,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21961837"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962520"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963232"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963954"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21965415"
          },
          {
            "trust": 0.3,
            "url": "http://www.ibm.com/support/docview.wss?uid=swg21966484"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966723"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022655"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098801"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/101012435"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/101013879"
          },
          {
            "trust": 0.3,
            "url": "http://www.fortiguard.com/advisory/fg-ir-15-014/"
          },
          {
            "trust": 0.3,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/101012550"
          },
          {
            "trust": 0.3,
            "url": "https://www.alienvault.com/forums/discussion/5438/security-advisory-alienvault-v5-0-4-addresses-31-vulnerabilities"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962519"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962726"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963964"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005375"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962039"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020862"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022647"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962686"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21961800"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21961633"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21960633"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963096"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21960713"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21964033"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21964441"
          },
          {
            "trust": 0.3,
            "url": "www-01.ibm.com/support/docview.wss?uid=swg21903425"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21960157"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020840"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21961179"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962493"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?rs=0\u0026uid=swg21963438"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21962623"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21959518"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21961438"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21961569"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963270"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005314"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005373"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005434"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21960045"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963498"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966481"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966847"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966873"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21967384"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21968046"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21968724"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21968871"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21970020"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21970103"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21971238"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21964030"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21963603"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966381"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8176"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-4000"
          },
          {
            "trust": 0.2,
            "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_n"
          },
          {
            "trust": 0.2,
            "url": "http://www.hpe.com/support/security_bulletin_archive"
          },
          {
            "trust": 0.2,
            "url": "http://www.hpe.com/support/subscriber_choice"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/119.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/live-hack-cve/cve-2015-1789"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2639-1/"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-349-21"
          },
          {
            "trust": 0.1,
            "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=44733"
          },
          {
            "trust": 0.1,
            "url": "https://www.openssl.org/about/secpolicy.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.openssl.org/about/releasestrat.html),"
          },
          {
            "trust": 0.1,
            "url": "https://rt.openssl.org/ticket/display.html?id=3286"
          },
          {
            "trust": 0.1,
            "url": "http://h20564.www2.hpe.com/hpsc/swd/public"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0705"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-5161"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5600"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0800"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2842"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3566"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0799"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.1,
            "url": "http://www.hp.com/jp/icewall_patchaccess"
          },
          {
            "trust": 0.1,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1789\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:10/openssl-8.4.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "https://www.openssl.org/news/secadv_20150611.txt\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://svnweb.freebsd.org/base?view=revision\u0026revision=nnnnnn\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-4000\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1790\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:10/openssl-10.1.patch"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/advisories/freebsd-sa-15:10.openssl.asc\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1791\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:10/openssl-10.1.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "https://security.freebsd.org/patches/sa-15:10/openssl-8.4.patch"
          },
          {
            "trust": 0.1,
            "url": "https://www.freebsd.org/handbook/makeworld.html\u003e."
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1788\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-1792\u003e"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-1790"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-1791"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-1792"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-1789"
          },
          {
            "trust": 0.1,
            "url": "https://www.hp.com/swpublishing/mtx-b59b11be53744759a650eadeb4"
          },
          {
            "trust": 0.1,
            "url": "https://www.hp.com/go/sim"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-1789"
          },
          {
            "db": "BID",
            "id": "75156"
          },
          {
            "db": "PACKETSTORM",
            "id": "169629"
          },
          {
            "db": "PACKETSTORM",
            "id": "137294"
          },
          {
            "db": "PACKETSTORM",
            "id": "132637"
          },
          {
            "db": "PACKETSTORM",
            "id": "132291"
          },
          {
            "db": "PACKETSTORM",
            "id": "132288"
          },
          {
            "db": "PACKETSTORM",
            "id": "132313"
          },
          {
            "db": "PACKETSTORM",
            "id": "136989"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1789"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2015-1789",
            "ident": null
          },
          {
            "db": "BID",
            "id": "75156",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "169629",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137294",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132637",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132291",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132288",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132313",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "136989",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2015-1789",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-06-12T00:00:00",
            "db": "VULMON",
            "id": "CVE-2015-1789",
            "ident": null
          },
          {
            "date": "2015-06-11T00:00:00",
            "db": "BID",
            "id": "75156",
            "ident": null
          },
          {
            "date": "2015-06-11T12:12:12",
            "db": "PACKETSTORM",
            "id": "169629",
            "ident": null
          },
          {
            "date": "2016-06-02T16:22:00",
            "db": "PACKETSTORM",
            "id": "137294",
            "ident": null
          },
          {
            "date": "2015-07-10T15:43:15",
            "db": "PACKETSTORM",
            "id": "132637",
            "ident": null
          },
          {
            "date": "2015-06-15T15:43:16",
            "db": "PACKETSTORM",
            "id": "132291",
            "ident": null
          },
          {
            "date": "2015-06-12T13:25:28",
            "db": "PACKETSTORM",
            "id": "132288",
            "ident": null
          },
          {
            "date": "2015-06-15T23:37:59",
            "db": "PACKETSTORM",
            "id": "132313",
            "ident": null
          },
          {
            "date": "2016-05-13T16:14:13",
            "db": "PACKETSTORM",
            "id": "136989",
            "ident": null
          },
          {
            "date": "2015-06-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-003081",
            "ident": null
          },
          {
            "date": "2015-06-12T19:59:02.507000",
            "db": "NVD",
            "id": "CVE-2015-1789",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2023-02-13T00:00:00",
            "db": "VULMON",
            "id": "CVE-2015-1789",
            "ident": null
          },
          {
            "date": "2017-05-02T01:08:00",
            "db": "BID",
            "id": "75156",
            "ident": null
          },
          {
            "date": "2017-03-09T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-003081",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-1789",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "75156"
          }
        ],
        "trust": 0.3
      },
      "title": {
        "_id": null,
        "data": "OpenSSL of  crypto/x509/x509_vfy.c of  X509_cmp_time Service disruption in functions  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003081"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Failure to Handle Exceptional Conditions",
        "sources": [
          {
            "db": "BID",
            "id": "75156"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201403-0275

    Vulnerability from variot - Updated: 2026-04-10 23:16

    sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character. OpenSSH is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks. Versions prior to OpenSSH 6.6 are vulnerable.

    Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/openssh-6.6p1-i486-1_slack14.1.txz: Upgraded. This update fixes a security issue when using environment passing with a sshd_config(5) AcceptEnv pattern with a wildcard. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532 ( Security fix ) +--------------------------+

    Where to find the new packages: +-----------------------------+

    Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)

    Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.

    Updated package for Slackware 13.0: ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssh-5.9p1-i486-1_slack13.0.txz

    Updated package for Slackware x86_64 13.0: ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssh-5.9p1-x86_64-1_slack13.0.txz

    Updated package for Slackware 13.1: ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/openssh-5.9p1-i486-1_slack13.1.txz

    Updated package for Slackware x86_64 13.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/openssh-5.9p1-x86_64-1_slack13.1.txz

    Updated package for Slackware 13.37: ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/openssh-5.9p1-i486-3_slack13.37.txz

    Updated package for Slackware x86_64 13.37: ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/openssh-5.9p1-x86_64-3_slack13.37.txz

    Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssh-6.6p1-i486-1_slack14.0.txz

    Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssh-6.6p1-x86_64-1_slack14.0.txz

    Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssh-6.6p1-i486-1_slack14.1.txz

    Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssh-6.6p1-x86_64-1_slack14.1.txz

    Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssh-6.6p1-i486-1.txz

    Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssh-6.6p1-x86_64-1.txz

    MD5 signatures: +-------------+

    Slackware 13.0 package: 0729d3be6a1886c2462522110333abc0 openssh-5.9p1-i486-1_slack13.0.txz

    Slackware x86_64 13.0 package: a474f048de648347207bacb21b5f8f28 openssh-5.9p1-x86_64-1_slack13.0.txz

    Slackware 13.1 package: 8df387cdf44f359a9de7c3e40ea321c6 openssh-5.9p1-i486-1_slack13.1.txz

    Slackware x86_64 13.1 package: e7eb361401849bbcfb0e20ea17181836 openssh-5.9p1-x86_64-1_slack13.1.txz

    Slackware 13.37 package: 8404668d896f81b44ddd5e6e2985f590 openssh-5.9p1-i486-3_slack13.37.txz

    Slackware x86_64 13.37 package: b50bb951453824e53dcddbdf1d571561 openssh-5.9p1-x86_64-3_slack13.37.txz

    Slackware 14.0 package: 755d1ec29f80ac40636741ddf618715a openssh-6.6p1-i486-1_slack14.0.txz

    Slackware x86_64 14.0 package: cc74307ab8875a8fa04a87f18b0cd216 openssh-6.6p1-x86_64-1_slack14.0.txz

    Slackware 14.1 package: 1dcb917e01fa83d1cabd59378c81dd32 openssh-6.6p1-i486-1_slack14.1.txz

    Slackware x86_64 14.1 package: dfb1f98206ce1e2300fea647a5281486 openssh-6.6p1-x86_64-1_slack14.1.txz

    Slackware -current package: 7a5f7c123c397d040fff868afbf86e8b n/openssh-6.6p1-i486-1.txz

    Slackware x86_64 -current package: e6d3cced2c7c9e642d8982b27295a408 n/openssh-6.6p1-x86_64-1.txz

    Installation instructions: +------------------------+

    Upgrade the package as root:

    upgradepkg openssh-6.6p1-i486-1_slack14.1.txz

    Next, restart the sshd daemon:

    sh /etc/rc.d/rc.sshd restart

    +-----+

    Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com

    +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: openssh security, bug fix, and enhancement update Advisory ID: RHSA-2014:1552-02 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2014-1552.html Issue date: 2014-10-14 CVE Names: CVE-2014-2532 CVE-2014-2653 =====================================================================

    1. Summary:

    Updated openssh packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.

    Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64

    1. Description:

    OpenSSH is OpenBSD's SSH (Secure Shell) protocol implementation. These packages include the core files necessary for both the OpenSSH client and server.

    It was discovered that OpenSSH clients did not correctly verify DNS SSHFP records. A malicious server could use this flaw to force a connecting client to skip the DNS SSHFP record check and require the user to perform manual host verification of the DNS SSHFP record. (CVE-2014-2653)

    It was found that OpenSSH did not properly handle certain AcceptEnv parameter values with wildcard characters. (CVE-2014-2532)

    This update also fixes the following bugs:

    • Based on the SP800-131A information security standard, the generation of a digital signature using the Digital Signature Algorithm (DSA) with the key size of 1024 bits and RSA with the key size of less than 2048 bits is disallowed after the year 2013. After this update, ssh-keygen no longer generates keys with less than 2048 bits in FIPS mode. However, the sshd service accepts keys of size 1024 bits as well as larger keys for compatibility reasons. (BZ#993580)

    • Previously, the openssh utility incorrectly set the oom_adj value to -17 for all of its children processes. This behavior was incorrect because the children processes were supposed to have this value set to 0. This update applies a patch to fix this bug and oom_adj is now properly set to 0 for all children processes as expected. (BZ#1010429)

    • Previously, if the sshd service failed to verify the checksum of an installed FIPS module using the fipscheck library, the information about this failure was only provided at the standard error output of sshd. As a consequence, the user could not notice this message and be uninformed when a system had not been properly configured for FIPS mode. To fix this bug, this behavior has been changed and sshd now sends such messages via the syslog service. (BZ#1020803)

    • When keys provided by the pkcs11 library were removed from the ssh agent using the "ssh-add -e" command, the user was prompted to enter a PIN. With this update, a patch has been applied to allow the user to remove the keys provided by pkcs11 without the PIN. (BZ#1042519)

    In addition, this update adds the following enhancements:

    • With this update, ControlPersist has been added to OpenSSH. The option in conjunction with the ControlMaster configuration directive specifies that the master connection remains open in the background after the initial client connection has been closed. (BZ#953088)

    • When the sshd daemon is configured to force the internal SFTP session, and the user attempts to use a connection other than SFTP, the appropriate message is logged to the /var/log/secure file. (BZ#997377)

    • Support for Elliptic Curve Cryptography modes for key exchange (ECDH) and host user keys (ECDSA) as specified by RFC5656 has been added to the openssh packages. However, they are not enabled by default and the user has to enable them manually. For more information on how to configure ECDSA and ECDH with OpenSSH, see: https://access.redhat.com/solutions/711953 (BZ#1028335)

    All openssh users are advised to upgrade to these updated packages, which contain backported patches to correct these issues and add these enhancements.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    953088 - OpenSSH adding ControlPersist patch to enable full usage of SSH control options 1010429 - Openssh Incorrectly sets oom_adj in all Children after Performing a Reload 1023043 - ssh_config manual page lists incorrect default value of KexAlgorithms 1023044 - Fix man page for ssh-keygen because of certificate support 1027197 - X11 Forwarding does not work with default config - error: Failed to allocate internet-domain X11 display socket 1028643 - Connection remains when fork() fails. 1077843 - CVE-2014-2532 openssh: AcceptEnv environment restriction bypass flaw 1081338 - CVE-2014-2653 openssh: failure to check DNS SSHFP records in certain scenarios 1108836 - ssh-keyscan should ignore SIGPIPE 1111568 - AUTOCREATE_SERVER_KEYS=RSAONLY is not supported by init script

    1. Package List:

    Red Hat Enterprise Linux Desktop (v. 6):

    Source: openssh-5.3p1-104.el6.src.rpm

    i386: openssh-5.3p1-104.el6.i686.rpm openssh-askpass-5.3p1-104.el6.i686.rpm openssh-clients-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-server-5.3p1-104.el6.i686.rpm

    x86_64: openssh-5.3p1-104.el6.x86_64.rpm openssh-askpass-5.3p1-104.el6.x86_64.rpm openssh-clients-5.3p1-104.el6.x86_64.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-server-5.3p1-104.el6.x86_64.rpm

    Red Hat Enterprise Linux Desktop Optional (v. 6):

    i386: openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-ldap-5.3p1-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm

    x86_64: openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-ldap-5.3p1-104.el6.x86_64.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: openssh-5.3p1-104.el6.src.rpm

    x86_64: openssh-5.3p1-104.el6.x86_64.rpm openssh-clients-5.3p1-104.el6.x86_64.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-server-5.3p1-104.el6.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: openssh-askpass-5.3p1-104.el6.x86_64.rpm openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-ldap-5.3p1-104.el6.x86_64.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: openssh-5.3p1-104.el6.src.rpm

    i386: openssh-5.3p1-104.el6.i686.rpm openssh-askpass-5.3p1-104.el6.i686.rpm openssh-clients-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-server-5.3p1-104.el6.i686.rpm

    ppc64: openssh-5.3p1-104.el6.ppc64.rpm openssh-askpass-5.3p1-104.el6.ppc64.rpm openssh-clients-5.3p1-104.el6.ppc64.rpm openssh-debuginfo-5.3p1-104.el6.ppc64.rpm openssh-server-5.3p1-104.el6.ppc64.rpm

    s390x: openssh-5.3p1-104.el6.s390x.rpm openssh-askpass-5.3p1-104.el6.s390x.rpm openssh-clients-5.3p1-104.el6.s390x.rpm openssh-debuginfo-5.3p1-104.el6.s390x.rpm openssh-server-5.3p1-104.el6.s390x.rpm

    x86_64: openssh-5.3p1-104.el6.x86_64.rpm openssh-askpass-5.3p1-104.el6.x86_64.rpm openssh-clients-5.3p1-104.el6.x86_64.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-server-5.3p1-104.el6.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-ldap-5.3p1-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm

    ppc64: openssh-debuginfo-5.3p1-104.el6.ppc.rpm openssh-debuginfo-5.3p1-104.el6.ppc64.rpm openssh-ldap-5.3p1-104.el6.ppc64.rpm pam_ssh_agent_auth-0.9.3-104.el6.ppc.rpm pam_ssh_agent_auth-0.9.3-104.el6.ppc64.rpm

    s390x: openssh-debuginfo-5.3p1-104.el6.s390.rpm openssh-debuginfo-5.3p1-104.el6.s390x.rpm openssh-ldap-5.3p1-104.el6.s390x.rpm pam_ssh_agent_auth-0.9.3-104.el6.s390.rpm pam_ssh_agent_auth-0.9.3-104.el6.s390x.rpm

    x86_64: openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-ldap-5.3p1-104.el6.x86_64.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: openssh-5.3p1-104.el6.src.rpm

    i386: openssh-5.3p1-104.el6.i686.rpm openssh-askpass-5.3p1-104.el6.i686.rpm openssh-clients-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-server-5.3p1-104.el6.i686.rpm

    x86_64: openssh-5.3p1-104.el6.x86_64.rpm openssh-askpass-5.3p1-104.el6.x86_64.rpm openssh-clients-5.3p1-104.el6.x86_64.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-server-5.3p1-104.el6.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-ldap-5.3p1-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm

    x86_64: openssh-debuginfo-5.3p1-104.el6.i686.rpm openssh-debuginfo-5.3p1-104.el6.x86_64.rpm openssh-ldap-5.3p1-104.el6.x86_64.rpm pam_ssh_agent_auth-0.9.3-104.el6.i686.rpm pam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

    1. References:

    https://www.redhat.com/security/data/cve/CVE-2014-2532.html https://www.redhat.com/security/data/cve/CVE-2014-2653.html https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/solutions/711953

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFUPK1zXlSAg2UNWIIRAgLFAKCbc0zGun3IBr/70ChlueemUsEORgCfa8RL IT6RfneDJRTv3j8EqBZSrp0= =33Fn -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201405-06


                                            http://security.gentoo.org/
    

    Severity: High Title: OpenSSH: Multiple vulnerabilities Date: May 11, 2014 Bugs: #231292, #247466, #386307, #410869, #419357, #456006, #505066 ID: 201405-06


    Synopsis

    Multiple vulnerabilities have been found in OpenSSH, the worst of which may allow remote attackers to execute arbitrary code. Please review the CVE identifiers referenced below for details.

    Workaround

    There is no known workaround at this time.

    Resolution

    All OpenSSH users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/openssh-6.6_p1-r1"

    NOTE: One or more of the issues described in this advisory have been fixed in previous updates. They are included in this advisory for the sake of completeness. It is likely that your system is already no longer affected by them.

    References

    [ 1 ] CVE-2008-5161 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5161 [ 2 ] CVE-2010-4478 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4478 [ 3 ] CVE-2010-4755 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4755 [ 4 ] CVE-2010-5107 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-5107 [ 5 ] CVE-2011-5000 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5000 [ 6 ] CVE-2012-0814 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0814 [ 7 ] CVE-2014-2532 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2532

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-201405-06.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2014 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    APPLE-SA-2015-09-30-3 OS X El Capitan 10.11

    OS X El Capitan 10.11 is now available and addresses the following:

    Address Book Available for: Mac OS X v10.6.8 and later Impact: A local attacker may be able to inject arbitrary code to processes loading the Address Book framework Description: An issue existed in Address Book framework's handling of an environment variable. This issue was addressed through improved environment variable handling. CVE-ID CVE-2015-5897 : Dan Bastone of Gotham Digital Science

    AirScan Available for: Mac OS X v10.6.8 and later Impact: An attacker with a privileged network position may be able to extract payload from eSCL packets sent over a secure connection Description: An issue existed in the processing of eSCL packets. This issue was addressed through improved validation checks. CVE-ID CVE-2015-5853 : an anonymous researcher

    apache_mod_php Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in PHP Description: Multiple vulnerabilities existed in PHP versions prior to 5.5.27, including one which may have led to remote code execution. This issue was addressed by updating PHP to version 5.5.27. CVE-ID CVE-2014-9425 CVE-2014-9427 CVE-2014-9652 CVE-2014-9705 CVE-2014-9709 CVE-2015-0231 CVE-2015-0232 CVE-2015-0235 CVE-2015-0273 CVE-2015-1351 CVE-2015-1352 CVE-2015-2301 CVE-2015-2305 CVE-2015-2331 CVE-2015-2348 CVE-2015-2783 CVE-2015-2787 CVE-2015-3329 CVE-2015-3330

    Apple Online Store Kit Available for: Mac OS X v10.6.8 and later Impact: A malicious application may gain access to a user's keychain items Description: An issue existed in validation of access control lists for iCloud keychain items. This issue was addressed through improved access control list checks. CVE-ID CVE-2015-5836 : XiaoFeng Wang of Indiana University, Luyi Xing of Indiana University, Tongxin Li of Peking University, Tongxin Li of Peking University, Xiaolong Bai of Tsinghua University

    AppleEvents Available for: Mac OS X v10.6.8 and later Impact: A user connected through screen sharing can send Apple Events to a local user's session Description: An issue existed with Apple Event filtering that allowed some users to send events to other users. This was addressed by improved Apple Event handling. CVE-ID CVE-2015-5849 : Jack Lawrence (@_jackhl)

    Audio Available for: Mac OS X v10.6.8 and later Impact: Playing a malicious audio file may lead to an unexpected application termination Description: A memory corruption issue existed in the handling of audio files. This issue issue was addressed through improved memory handling. CVE-ID CVE-2015-5862 : YoungJin Yoon of Information Security Lab. (Adv.: Prof. Taekyoung Kwon), Yonsei University, Seoul, Korea

    bash Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in bash Description: Multiple vulnerabilities existed in bash versions prior to 3.2 patch level 57. These issues were addressed by updating bash version 3.2 to patch level 57. CVE-ID CVE-2014-6277 CVE-2014-7186 CVE-2014-7187

    Certificate Trust Policy Available for: Mac OS X v10.6.8 and later Impact: Update to the certificate trust policy Description: The certificate trust policy was updated. The complete list of certificates may be viewed at https://support.apple.com/en- us/HT202858.

    CFNetwork Cookies Available for: Mac OS X v10.6.8 and later Impact: An attacker in a privileged network position can track a user's activity Description: A cross-domain cookie issue existed in the handling of top level domains. The issue was address through improved restrictions of cookie creation. CVE-ID CVE-2015-5885 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua University

    CFNetwork FTPProtocol Available for: Mac OS X v10.6.8 and later Impact: Malicious FTP servers may be able to cause the client to perform reconnaissance on other hosts Description: An issue existed in the handling of FTP packets when using the PASV command. This issue was resolved through improved validation. CVE-ID CVE-2015-5912 : Amit Klein

    CFNetwork HTTPProtocol Available for: Mac OS X v10.6.8 and later Impact: A maliciously crafted URL may be able to bypass HSTS and leak sensitive data Description: A URL parsing vulnerability existed in HSTS handling. This issue was addressed through improved URL parsing. CVE-ID CVE-2015-5858 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua University

    CFNetwork HTTPProtocol Available for: Mac OS X v10.6.8 and later Impact: A malicious website may be able to track users in Safari private browsing mode Description: An issue existed in the handling of HSTS state in Safari private browsing mode. This issue was addressed through improved state handling. CVE-ID CVE-2015-5860 : Sam Greenhalgh of RadicalResearch Ltd

    CFNetwork Proxies Available for: Mac OS X v10.6.8 and later Impact: Connecting to a malicious web proxy may set malicious cookies for a website Description: An issue existed in the handling of proxy connect responses. This issue was addressed by removing the set-cookie header while parsing the connect response. CVE-ID CVE-2015-5841 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua University

    CFNetwork SSL Available for: Mac OS X v10.6.8 and later Impact: An attacker with a privileged network position may intercept SSL/TLS connections Description: A certificate validation issue existed in NSURL when a certificate changed. This issue was addressed through improved certificate validation. CVE-ID CVE-2015-5824 : Timothy J. Wood of The Omni Group

    CFNetwork SSL Available for: Mac OS X v10.6.8 and later Impact: An attacker may be able to decrypt data protected by SSL Description: There are known attacks on the confidentiality of RC4. An attacker could force the use of RC4, even if the server preferred better ciphers, by blocking TLS 1.0 and higher connections until CFNetwork tried SSL 3.0, which only allows RC4. This issue was addressed by removing the fallback to SSL 3.0.

    CoreCrypto Available for: Mac OS X v10.6.8 and later Impact: An attacker may be able to determine a private key Description: By observing many signing or decryption attempts, an attacker may have been able to determine the RSA private key. This issue was addressed using improved encryption algorithms.

    CoreText Available for: Mac OS X v10.6.8 and later Impact: Processing a maliciously crafted font file may lead to arbitrary code execution Description: A memory corruption issue existed in the processing of font files. This issue was addressed through improved input validation. CVE-ID CVE-2015-5874 : John Villamil (@day6reak), Yahoo Pentest Team

    Dev Tools Available for: Mac OS X v10.6.8 and later Impact: A malicious application may be able to execute arbitrary code with system privileges Description: A memory corruption issue existed in dyld. This was addressed through improved memory handling. CVE-ID CVE-2015-5876 : beist of grayhash

    Dev Tools Available for: Mac OS X v10.6.8 and later Impact: An application may be able to bypass code signing Description: An issue existed with validation of the code signature of executables. This issue was addressed through improved bounds checking. CVE-ID CVE-2015-5839 : @PanguTeam

    Disk Images Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with system privileges Description: A memory corruption issue existed in DiskImages. This issue was addressed through improved memory handling. CVE-ID CVE-2015-5847 : Filippo Bigarella, Luca Todesco

    dyld Available for: Mac OS X v10.6.8 and later Impact: An application may be able to bypass code signing Description: An issue existed with validation of the code signature of executables. This issue was addressed through improved bounds checking. CVE-ID CVE-2015-5839 : TaiG Jailbreak Team

    EFI Available for: Mac OS X v10.6.8 and later Impact: A malicious application can prevent some systems from booting Description: An issue existed with the addresses covered by the protected range register. This issue was fixed by changing the protected range. CVE-ID CVE-2015-5900 : Xeno Kovah & Corey Kallenberg from LegbaCore

    EFI Available for: Mac OS X v10.6.8 and later Impact: A malicious Apple Ethernet Thunderbolt adapter may be able to affect firmware flashing Description: Apple Ethernet Thunderbolt adapters could modify the host firmware if connected during an EFI update. This issue was addressed by not loading option ROMs during updates. CVE-ID CVE-2015-5914 : Trammell Hudson of Two Sigma Investments and snare

    Finder Available for: Mac OS X v10.6.8 and later Impact: The "Secure Empty Trash" feature may not securely delete files placed in the Trash Description: An issue existed in guaranteeing secure deletion of Trash files on some systems, such as those with flash storage. This issue was addressed by removing the "Secure Empty Trash" option. CVE-ID CVE-2015-5901 : Apple

    Game Center Available for: Mac OS X v10.6.8 and later Impact: A malicious Game Center application may be able to access a player's email address Description: An issue existed in Game Center in the handling of a player's email. This issue was addressed through improved access restrictions. CVE-ID CVE-2015-5855 : Nasser Alnasser

    Heimdal Available for: Mac OS X v10.6.8 and later Impact: An attacker may be able to replay Kerberos credentials to the SMB server Description: An authentication issue existed in Kerberos credentials. This issue was addressed through additional validation of credentials using a list of recently seen credentials. CVE-ID CVE-2015-5913 : Tarun Chopra of Microsoft Corporation, U.S. and Yu Fan of Microsoft Corporation, China

    ICU Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in ICU Description: Multiple vulnerabilities existed in ICU versions prior to 53.1.0. These issues were addressed by updating ICU to version 55.1. CVE-ID CVE-2014-8146 CVE-2014-8147 CVE-2015-5922

    Install Framework Legacy Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to gain root privileges Description: A restriction issue existed in the Install private framework containing a privileged executable. This issue was addressed by removing the executable. CVE-ID CVE-2015-5888 : Apple

    Intel Graphics Driver Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with system privileges Description: Multiple memory corruption issues existed in the Intel Graphics Driver. These issues were addressed through improved memory handling. CVE-ID CVE-2015-5830 : Yuki MIZUNO (@mzyy94) CVE-2015-5877 : Camillus Gerard Cai

    IOAudioFamily Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to determine kernel memory layout Description: An issue existed in IOAudioFamily that led to the disclosure of kernel memory content. This issue was addressed by permuting kernel pointers. CVE-ID CVE-2015-5864 : Luca Todesco

    IOGraphics Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues existed in the kernel. These issues were addressed through improved memory handling. CVE-ID CVE-2015-5871 : Ilja van Sprundel of IOActive CVE-2015-5872 : Ilja van Sprundel of IOActive CVE-2015-5873 : Ilja van Sprundel of IOActive CVE-2015-5890 : Ilja van Sprundel of IOActive

    IOGraphics Available for: Mac OS X v10.6.8 and later Impact: A malicious application may be able to determine kernel memory layout Description: An issue existed in IOGraphics which could have led to the disclosure of kernel memory layout. This issue was addressed through improved memory management. CVE-ID CVE-2015-5865 : Luca Todesco

    IOHIDFamily Available for: Mac OS X v10.6.8 and later Impact: A malicious application may be able to execute arbitrary code with system privileges Description: Multiple memory corruption issues existed in IOHIDFamily. These issues were addressed through improved memory handling. CVE-ID CVE-2015-5866 : Apple CVE-2015-5867 : moony li of Trend Micro

    IOStorageFamily Available for: Mac OS X v10.6.8 and later Impact: A local attacker may be able to read kernel memory Description: A memory initialization issue existed in the kernel. This issue was addressed through improved memory handling. CVE-ID CVE-2015-5863 : Ilja van Sprundel of IOActive

    Kernel Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues existed in the Kernel. These issues were addressed through improved memory handling. CVE-ID CVE-2015-5868 : Cererdlong of Alibaba Mobile Security Team CVE-2015-5896 : Maxime Villard of m00nbsd CVE-2015-5903 : CESG

    Kernel Available for: Mac OS X v10.6.8 and later Impact: A local process can modify other processes without entitlement checks Description: An issue existed where root processes using the processor_set_tasks API were allowed to retrieve the task ports of other processes. This issue was addressed through additional entitlement checks. CVE-ID CVE-2015-5882 : Pedro Vilaca, working from original research by Ming-chieh Pan and Sung-ting Tsai; Jonathan Levin

    Kernel Available for: Mac OS X v10.6.8 and later Impact: A local attacker may control the value of stack cookies Description: Multiple weaknesses existed in the generation of user space stack cookies. These issues were addressed through improved generation of stack cookies. CVE-ID CVE-2013-3951 : Stefan Esser

    Kernel Available for: Mac OS X v10.6.8 and later Impact: An attacker may be able to launch denial of service attacks on targeted TCP connections without knowing the correct sequence number Description: An issue existed in xnu's validation of TCP packet headers. This issue was addressed through improved TCP packet header validation. CVE-ID CVE-2015-5879 : Jonathan Looney

    Kernel Available for: Mac OS X v10.6.8 and later Impact: An attacker in a local LAN segment may disable IPv6 routing Description: An insufficient validation issue existed in the handling of IPv6 router advertisements that allowed an attacker to set the hop limit to an arbitrary value. This issue was addressed by enforcing a minimum hop limit. CVE-ID CVE-2015-5869 : Dennis Spindel Ljungmark

    Kernel Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to determine kernel memory layout Description: An issue existed that led to the disclosure of kernel memory layout. This was addressed through improved initialization of kernel memory structures. CVE-ID CVE-2015-5842 : beist of grayhash

    Kernel Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to determine kernel memory layout Description: An issue existed in debugging interfaces that led to the disclosure of memory content. This issue was addressed by sanitizing output from debugging interfaces. CVE-ID CVE-2015-5870 : Apple

    Kernel Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to cause a system denial of service Description: A state management issue existed in debugging functionality. This issue was addressed through improved validation. CVE-ID CVE-2015-5902 : Sergi Alvarez (pancake) of NowSecure Research Team

    libc Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue existed in the kernel. This issue was addressed through improved memory handling. CVE-ID CVE-2014-8611 : Adrian Chadd and Alfred Perlstein of Norse Corporation

    libpthread Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue existed in the kernel. This issue was addressed through improved memory handling. CVE-ID CVE-2015-5899 : Lufeng Li of Qihoo 360 Vulcan Team

    libxpc Available for: Mac OS X v10.6.8 and later Impact: Many SSH connections could cause a denial of service Description: launchd had no limit on the number of processes that could be started by a network connection. This issue was addressed by limiting the number of SSH processes to 40. CVE-ID CVE-2015-5881 : Apple

    Login Window Available for: Mac OS X v10.6.8 and later Impact: The screen lock may not engage after the specified time period Description: An issue existed with captured display locking. The issue was addressed through improved lock handling. CVE-ID CVE-2015-5833 : Carlos Moreira, Rainer Dorau of rainer dorau informationsdesign, Chris Nehren, Kai Takac, Hans Douma, Toni Vaahtera, and an anonymous researcher

    lukemftpd Available for: Mac OS X v10.6.8 and later Impact: A remote attacker may be able to deny service to the FTP server Description: A glob-processing issue existed in tnftpd. This issue was addressed through improved glob validation. CVE-ID CVE-2015-5917 : Maksymilian Arciemowicz of cxsecurity.com

    Mail Available for: Mac OS X v10.6.8 and later Impact: Printing an email may leak sensitive user information Description: An issue existed in Mail which bypassed user preferences when printing an email. This issue was addressed through improved user preference enforcement. CVE-ID CVE-2015-5881 : Owen DeLong of Akamai Technologies, Noritaka Kamiya, Dennis Klein from Eschenburg, Germany, Jeff Hammett of Systim Technology Partners

    Mail Available for: Mac OS X v10.6.8 and later Impact: An attacker in a privileged network position may be able to intercept attachments of S/MIME-encrypted e-mail sent via Mail Drop Description: An issue existed in handling encryption parameters for large email attachments sent via Mail Drop. The issue is addressed by no longer offering Mail Drop when sending an encrypted e-mail. CVE-ID CVE-2015-5884 : John McCombs of Integrated Mapping Ltd

    Multipeer Connectivity Available for: Mac OS X v10.6.8 and later Impact: A local attacker may be able to observe unprotected multipeer data Description: An issue existed in convenience initializer handling in which encryption could be actively downgraded to a non-encrypted session. This issue was addressed by changing the convenience initializer to require encryption. CVE-ID CVE-2015-5851 : Alban Diquet (@nabla_c0d3) of Data Theorem

    NetworkExtension Available for: Mac OS X v10.6.8 and later Impact: A malicious application may be able to determine kernel memory layout Description: An uninitialized memory issue in the kernel led to the disclosure of kernel memory content. This issue was addressed through improved memory initialization. CVE-ID CVE-2015-5831 : Maxime Villard of m00nbsd

    Notes Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to leak sensitive user information Description: An issue existed in parsing links in the Notes application. This issue was addressed through improved input validation. CVE-ID CVE-2015-5878 : Craig Young of Tripwire VERT, an anonymous researcher

    Notes Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to leak sensitive user information Description: A cross-site scripting issue existed in parsing text by the Notes application. This issue was addressed through improved input validation. CVE-ID CVE-2015-5875 : xisigr of Tencent's Xuanwu LAB (www.tencent.com)

    OpenSSH Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in OpenSSH Description: Multiple vulnerabilities existed in OpenSSH versions prior to 6.9. These issues were addressed by updating OpenSSH to version 6.9. CVE-ID CVE-2014-2532

    OpenSSL Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in OpenSSL Description: Multiple vulnerabilities existed in OpenSSL versions prior to 0.9.8zg. These were addressed by updating OpenSSL to version 0.9.8zg. CVE-ID CVE-2015-0286 CVE-2015-0287

    procmail Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in procmail Description: Multiple vulnerabilities existed in procmail versions prior to 3.22. These issues were addressed by removing procmail. CVE-ID CVE-2014-3618

    remote_cmds Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with root privileges Description: An issue existed in the usage of environment variables by the rsh binary. This issue was addressed by dropping setuid privileges from the rsh binary. CVE-ID CVE-2015-5889 : Philip Pettersson

    removefile Available for: Mac OS X v10.6.8 and later Impact: Processing malicious data may lead to unexpected application termination Description: An overflow fault existed in the checkint division routines. This issue was addressed with improved division routines. CVE-ID CVE-2015-5840 : an anonymous researcher

    Ruby Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in Ruby Description: Multiple vulnerabilities existed in Ruby versions prior to 2.0.0p645. These were addressed by updating Ruby to version 2.0.0p645. CVE-ID CVE-2014-8080 CVE-2014-8090 CVE-2015-1855

    Security Available for: Mac OS X v10.6.8 and later Impact: The lock state of the keychain may be incorrectly displayed to the user Description: A state management issue existed in the way keychain lock status was tracked. This issue was addressed through improved state management. CVE-ID CVE-2015-5915 : Peter Walz of University of Minnesota, David Ephron, Eric E. Lawrence, Apple

    Security Available for: Mac OS X v10.6.8 and later Impact: A trust evaluation configured to require revocation checking may succeed even if revocation checking fails Description: The kSecRevocationRequirePositiveResponse flag was specified but not implemented. This issue was addressed by implementing the flag. CVE-ID CVE-2015-5894 : Hannes Oud of kWallet GmbH

    Security Available for: Mac OS X v10.6.8 and later Impact: A remote server may prompt for a certificate before identifying itself Description: Secure Transport accepted the CertificateRequest message before the ServerKeyExchange message. This issue was addressed by requiring the ServerKeyExchange first. CVE-ID CVE-2015-5887 : Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine Delignat-Lavaud, Alfredo Pironti, and Jean Karim Zinzindohoue of INRIA Paris-Rocquencourt, and Cedric Fournet and Markulf Kohlweiss of Microsoft Research, Pierre-Yves Strub of IMDEA Software Institute

    SMB Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue existed in the kernel. This issue was addressed through improved memory handling. CVE-ID CVE-2015-5891 : Ilja van Sprundel of IOActive

    SMB Available for: Mac OS X v10.6.8 and later Impact: A local user may be able to determine kernel memory layout Description: An issue existed in SMBClient that led to the disclosure of kernel memory content. This issue was addressed through improved bounds checking. CVE-ID CVE-2015-5893 : Ilja van Sprundel of IOActive

    SQLite Available for: Mac OS X v10.6.8 and later Impact: Multiple vulnerabilities in SQLite v3.8.5 Description: Multiple vulnerabilities existed in SQLite v3.8.5. These issues were addressed by updating SQLite to version 3.8.10.2. CVE-ID CVE-2015-3414 CVE-2015-3415 CVE-2015-3416

    Telephony Available for: Mac OS X v10.6.8 and later Impact: A local attacker can place phone calls without the user's knowledge when using Continuity Description: An issue existed in the authorization checks for placing phone calls. This issue was addressed through improved authorization checks. CVE-ID CVE-2015-3785 : Dan Bastone of Gotham Digital Science

    Terminal Available for: Mac OS X v10.6.8 and later Impact: Maliciously crafted text could mislead the user in Terminal Description: Terminal did not handle bidirectional override characters in the same way when displaying text and when selecting text. This issue was addressed by suppressing bidirectional override characters in Terminal. CVE-ID CVE-2015-5883 : an anonymous researcher

    tidy Available for: Mac OS X v10.6.8 and later Impact: Visiting a maliciously crafted website may lead to arbitrary code execution Description: Multiple memory corruption issues existed in tidy. These issues were addressed through improved memory handling. CVE-ID CVE-2015-5522 : Fernando Munoz of NULLGroup.com CVE-2015-5523 : Fernando Munoz of NULLGroup.com

    Time Machine Available for: Mac OS X v10.6.8 and later Impact: A local attacker may gain access to keychain items Description: An issue existed in backups by the Time Machine framework. This issue was addressed through improved coverage of Time Machine backups. CVE-ID CVE-2015-5854 : Jonas Magazinius of Assured AB

    Note: OS X El Capitan 10.11 includes the security content of Safari 9: https://support.apple.com/kb/HT205265.

    OS X El Capitan 10.11 may be obtained from the Mac App Store: http://www.apple.com/support/downloads/

    Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/

    -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org

    iQIcBAEBCAAGBQJWDB2wAAoJEBcWfLTuOo7t0sYP/2L3JOGPkHH8XUh2YHpu5qaw S5F2v+SRpWleKQBVsGZ7oA8PV0rBTzEkzt8K1tNxYmxEqL9f/TpRiGoforn89thO /hOtmVOfUcBjPZ4XKwMVzycfSMC9o6LxWTLEKDVylE+F+5jkXafOC9QaqD11dxX6 QhENkpS1BwrKhyaSVxEcgBQtZM9aTsVdZ78rTCb9XTn6gDnvs8NfIQquFOnaQT54 YJ36e5UcUsnyBIol+yGDbC3ZEhzSVIGE5/8/NFlFfRXLgnJArxD8lqz8WdfU9fop hpT/dDqqAdYbRcW1ihcG1haiNHgP9yQCY5jRNfttb+Tc/kIi/QmPkEO0QS8Ygt/O c3sUbNulr1LCinymFVwx16CM1DplGS/GmBL18BAEBnL6yi9tEhYDynZWLSEa37VR 8q802rXRSF10Wct9/kEeR4HgY/1k0KK/4Uddm3c0YyOU21ya7NAhoHGwmDa9g11r N1TniOK8tPiCGjRNOJwuF6DKxD9L3Fv44bVlxAarGUGYkICqzaNS+bgKI1aQNahT fJ91x5uKD4+L9v9c5slkoDIvWqIhO9oyuxgnmC5GstkwFplFXSOklLkTktjLGNn1 nJq8cPnZ/3E1RXTEwVhGljYw5pdZHNx98XmLomGrPqVlZfjGURK+5AXdf2pOlt2e g6jld/w5tPuCFhGucE7Z =XciV -----END PGP SIGNATURE----- .

    Matthew Vernon reported that if a SSH server offers a HostCertificate that the ssh client doesn't accept, then the client doesn't check the DNS for SSHFP records. As a consequence a malicious server can disable SSHFP-checking by presenting a certificate (CVE-2014-2653).


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2653 http://advisories.mageia.org/MGASA-2014-0143.html http://advisories.mageia.org/MGASA-2014-0166.html


    Updated Packages:

    Mandriva Business Server 1/X86_64: 753bd40deb60429adc6a7c1afd63ee3d mbs1/x86_64/openssh-5.9p1-6.3.mbs1.x86_64.rpm 377e7fbb14f72a1e32da41f19be7baa8 mbs1/x86_64/openssh-askpass-5.9p1-6.3.mbs1.x86_64.rpm a906db623fc8d56eab9b8b99b1af84d9 mbs1/x86_64/openssh-askpass-common-5.9p1-6.3.mbs1.x86_64.rpm 9fc03d4929efdf21a26aef308eb66f14 mbs1/x86_64/openssh-askpass-gnome-5.9p1-6.3.mbs1.x86_64.rpm f2dbea4a0a8109bc835c69e871f07a69 mbs1/x86_64/openssh-clients-5.9p1-6.3.mbs1.x86_64.rpm a20d329b8332ff7f7f10dd541a3865a9 mbs1/x86_64/openssh-server-5.9p1-6.3.mbs1.x86_64.rpm 0fd2c0a9338a7e8e8747c2ea3ae43c49 mbs1/SRPMS/openssh-5.9p1-6.3.mbs1.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. ============================================================================ Ubuntu Security Notice USN-2155-1 March 25, 2014

    openssh vulnerability

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 13.10
    • Ubuntu 12.10
    • Ubuntu 12.04 LTS
    • Ubuntu 10.04 LTS

    Summary:

    OpenSSH incorrectly handled environment restrictions with wildcards.

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 13.10: openssh-server 1:6.2p2-6ubuntu0.2

    Ubuntu 12.10: openssh-server 1:6.0p1-3ubuntu1.1

    Ubuntu 12.04 LTS: openssh-server 1:5.9p1-5ubuntu1.2

    Ubuntu 10.04 LTS: openssh-server 1:5.3p1-3ubuntu7.1

    In general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04499681

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c04499681 Version: 1

    HPSBUX03188 SSRT101487 rev.1 - HP-UX running HP Secure Shell, Remote Denial of Service (DoS) and other Vulnerabilities

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2014-11-07 Last Updated: 2014-11-07

    Potential Security Impact: Remote Denial of Service (DoS) and other vulnerabilities

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP-UX running HP Secure Shell. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS) and other vulnerabilities.

    References:

    CVE-2013-4548 - remote Permissions, Privileges, and Access Control (CWE-264)

    CVE-2014-1692 - remote Denial of Service (DoS), Buffer Errors (CWE-119)

    CVE-2014-2532 - remote Permissions, Privileges, and Access Control (CWE-264)

    CVE-2014-2653 - remote Input Validation (CWE-20)

    SSRT101487

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.11 running HP Secure Shell before version A.06.20.010

    HP-UX B.11.23 running HP Secure Shell before version A.06.20.011

    HP-UX B.11.31 running HP Secure Shell before version A.06.20.012

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2013-4548 (AV:N/AC:M/Au:S/C:P/I:P/A:P) 6.0 CVE-2014-1692 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-2532 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8 CVE-2014-2653 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has provided the following software updates to resolve this vulnerability. The updates are available for download from: http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber= T1471AA

    OS Release HP Secure Shell Version Depot Name

    HP-UX B.11.11 (11i v1) A.06.20.010 or subsequent HP_UX_11i_v1_T1471AA_A.06.20.010_HP-UX_B.11.11_32_64.depot

    HP-UX B.11.23 (11i v2) A.06.20.011 or subsequent HP_UX_11i_v2_T1471AA_A.06.20.011_HP-UX_B.11.23_IA_PA.depot

    HP-UX B.11.31 (11i v3) A.06.20.012 or subsequent HP_UX_11i_v3_SecureShell_A.06.20.012_HP-UX_B.11.31_IA_PA.depot

    MANUAL ACTIONS: Yes - Update

    PRODUCT SPECIFIC INFORMATION

    HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all HP-issued Security Bulletins and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa

    AFFECTED VERSIONS

    HP-UX B.11.11

    Secure_Shell.SECURE_SHELL action: install revision A.06.20.010 or subsequent

    HP-UX B.11.23

    Secure_Shell.SECSH-CMN Secure_Shell.SECURE_SHELL action: install revision A.06.20.011 or subsequent

    HP-UX B.11.31

    Secure_Shell.SECSH-CMN Secure_Shell.SECURE_SHELL action: install revision A.06.20.012 or subsequent

    END AFFECTED VERSIONS

    HISTORY: Version:1 (rev.1) - 7 November 2014 Initial Release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2014 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "communications user data repository",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "oracle",
            "version": "10.0.1"
          },
          {
            "_id": null,
            "model": "communications policy management",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "9.9.1"
          },
          {
            "_id": null,
            "model": "communications policy management",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "9.7.3"
          },
          {
            "_id": null,
            "model": "communications policy management",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "oracle",
            "version": "10.4.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openbsd",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openbsd",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openbsd",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openbsd",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "openbsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "openbsd",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "openbsd",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.6.8 thats all  10.11"
          },
          {
            "_id": null,
            "model": "communications policy management",
            "scope": "lte",
            "trust": 0.8,
            "vendor": "oracle",
            "version": "12.1.1"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "big-ip wom hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "big-ip apm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "5.0p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssh",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1.8"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.10"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "big-ip asm hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.1"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.7"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip apm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "idatplex dx360 m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79120"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2407863"
          },
          {
            "_id": null,
            "model": "big-ip psm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "idatplex dx360 m4 water cooled type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79180"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x35007383"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1"
          },
          {
            "_id": null,
            "model": "5.2p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssh",
            "version": null
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2207906"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip apm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "idatplex dx360 m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79130"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.40"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.2"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x33007382"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11"
          },
          {
            "_id": null,
            "model": "big-ip asm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "system type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x3850x638370"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "flex system manager node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7955"
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "nextscale nx360 m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "54550"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.4"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2408738"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.3"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "6.2p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssh",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip link controller hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-iq device",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.0"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x365079150"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "big-ip wom hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip aam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x35507914"
          },
          {
            "_id": null,
            "model": "big-ip asm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0.0"
          },
          {
            "_id": null,
            "model": "big-ip psm hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip apm hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.8"
          },
          {
            "_id": null,
            "model": "big-ip wom hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "gpfs for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5.0.11"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x357087330"
          },
          {
            "_id": null,
            "model": "big-ip asm hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.2"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2202585"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "6.2p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssh",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip afm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip wom hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "big-ip psm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2227916"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "big-ip wom hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics 11.0.0-hf2",
            "scope": null,
            "trust": 0.3,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.14"
          },
          {
            "_id": null,
            "model": "big-ip afm hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.2"
          },
          {
            "_id": null,
            "model": "big-ip asm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "14.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x8804259"
          },
          {
            "_id": null,
            "model": "big-ip apm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x37508752"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "big-ip psm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "business server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "1x8664"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "big-ip apm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x36307158"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.4"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip asm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "5.6p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "openssh",
            "version": null
          },
          {
            "_id": null,
            "model": "bladecenter advanced management module 3.66g",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip apm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2408737"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.37"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.3"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip wom hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.4"
          },
          {
            "_id": null,
            "model": "big-ip asm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.00"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x32502583"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.3"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip asm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x31002582"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "gpfs for windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "big-ip psm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2.4"
          },
          {
            "_id": null,
            "model": "p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.8"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.5"
          },
          {
            "_id": null,
            "model": "big-ip apm hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "13.10"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip psm hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-ip asm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "nsm3000 appliances",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2012.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "nsmxpress appliances",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2012.2"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "system m5 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x310054570"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "system m4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x35307160"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "big-ip apm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "arx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.5"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0.00"
          },
          {
            "_id": null,
            "model": "big-ip asm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x357087180"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.3.3"
          },
          {
            "_id": null,
            "model": "idatplex dx360 m4 water cooled type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "79190"
          },
          {
            "_id": null,
            "model": "big-ip wom",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "system type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x3950x638370"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "big-ip psm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-iq cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip apm hf2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.0"
          },
          {
            "_id": null,
            "model": "big-ip wom hf1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x2408956"
          },
          {
            "_id": null,
            "model": "flex system manager node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8731"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x8807903"
          },
          {
            "_id": null,
            "model": "communications policy management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "12.1.1"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.5"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip analytics hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "system m4 hd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x36305466"
          },
          {
            "_id": null,
            "model": "big-ip apm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "big-ip pem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "big-ip gtm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "flex system compute node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x4407917"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "system m4 hd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x36505460"
          },
          {
            "_id": null,
            "model": "system m4 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x357087220"
          },
          {
            "_id": null,
            "model": "big-iq security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "flex system manager node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "8734"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.4"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0.00"
          },
          {
            "_id": null,
            "model": "big-ip link controller",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-ip link controller hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          },
          {
            "_id": null,
            "model": "big-ip gtm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm hf5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "big-ip analytics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.4.1"
          },
          {
            "_id": null,
            "model": "virtual i/o server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.2"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "big-ip pem hf4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1.0"
          },
          {
            "_id": null,
            "model": "big-ip ltm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.2.1"
          },
          {
            "_id": null,
            "model": "openssh",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openssh",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "big-ip webaccelerator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "system m5 type",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "x325054580"
          },
          {
            "_id": null,
            "model": "big-ip edge gateway hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm hf3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "big-ip psm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "big-ip asm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "11.5.1"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "66355"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-2532"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:openbsd:openssh",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:oracle:communications_policy_management",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Jann Horn",
        "sources": [
          {
            "db": "BID",
            "id": "66355"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-2532",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2014-2532",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.9,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 1.8,
                "id": "CVE-2014-2532",
                "impactScore": 2.7,
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-2532",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-2532",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201403-336",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2014-2532",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-2532"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-2532"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character. OpenSSH is prone to a security-bypass vulnerability. \nAn attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks. \nVersions prior to OpenSSH 6.6 are vulnerable. \n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n+--------------------------+\npatches/packages/openssh-6.6p1-i486-1_slack14.1.txz:  Upgraded. \n  This update fixes a security issue when using environment passing with\n  a sshd_config(5) AcceptEnv pattern with a wildcard. \n  For more information, see:\n    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532\n  (* Security fix *)\n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project!  :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated package for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/openssh-5.9p1-i486-1_slack13.0.txz\n\nUpdated package for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/openssh-5.9p1-x86_64-1_slack13.0.txz\n\nUpdated package for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/openssh-5.9p1-i486-1_slack13.1.txz\n\nUpdated package for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/openssh-5.9p1-x86_64-1_slack13.1.txz\n\nUpdated package for Slackware 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/openssh-5.9p1-i486-3_slack13.37.txz\n\nUpdated package for Slackware x86_64 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/openssh-5.9p1-x86_64-3_slack13.37.txz\n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/openssh-6.6p1-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/openssh-6.6p1-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/openssh-6.6p1-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/openssh-6.6p1-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/openssh-6.6p1-i486-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/openssh-6.6p1-x86_64-1.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 13.0 package:\n0729d3be6a1886c2462522110333abc0  openssh-5.9p1-i486-1_slack13.0.txz\n\nSlackware x86_64 13.0 package:\na474f048de648347207bacb21b5f8f28  openssh-5.9p1-x86_64-1_slack13.0.txz\n\nSlackware 13.1 package:\n8df387cdf44f359a9de7c3e40ea321c6  openssh-5.9p1-i486-1_slack13.1.txz\n\nSlackware x86_64 13.1 package:\ne7eb361401849bbcfb0e20ea17181836  openssh-5.9p1-x86_64-1_slack13.1.txz\n\nSlackware 13.37 package:\n8404668d896f81b44ddd5e6e2985f590  openssh-5.9p1-i486-3_slack13.37.txz\n\nSlackware x86_64 13.37 package:\nb50bb951453824e53dcddbdf1d571561  openssh-5.9p1-x86_64-3_slack13.37.txz\n\nSlackware 14.0 package:\n755d1ec29f80ac40636741ddf618715a  openssh-6.6p1-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\ncc74307ab8875a8fa04a87f18b0cd216  openssh-6.6p1-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\n1dcb917e01fa83d1cabd59378c81dd32  openssh-6.6p1-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\ndfb1f98206ce1e2300fea647a5281486  openssh-6.6p1-x86_64-1_slack14.1.txz\n\nSlackware -current package:\n7a5f7c123c397d040fff868afbf86e8b  n/openssh-6.6p1-i486-1.txz\n\nSlackware x86_64 -current package:\ne6d3cced2c7c9e642d8982b27295a408  n/openssh-6.6p1-x86_64-1.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the package as root:\n# upgradepkg openssh-6.6p1-i486-1_slack14.1.txz\n\nNext, restart the sshd daemon:\n# sh /etc/rc.d/rc.sshd restart\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list:                          |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message:                                                     |\n|                                                                        |\n|   unsubscribe slackware-security                                       |\n|                                                                        |\n| You will get a confirmation message back containing instructions to    |\n| complete the process.  Please do not reply to this email address. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: openssh security, bug fix, and enhancement update\nAdvisory ID:       RHSA-2014:1552-02\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2014-1552.html\nIssue date:        2014-10-14\nCVE Names:         CVE-2014-2532 CVE-2014-2653 \n=====================================================================\n\n1. Summary:\n\nUpdated openssh packages that fix two security issues, several bugs, and\nadd various enhancements are now available for Red Hat Enterprise Linux 6. \n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\n\n3. Description:\n\nOpenSSH is OpenBSD\u0027s SSH (Secure Shell) protocol implementation. \nThese packages include the core files necessary for both the OpenSSH client\nand server. \n\nIt was discovered that OpenSSH clients did not correctly verify DNS SSHFP\nrecords. A malicious server could use this flaw to force a connecting\nclient to skip the DNS SSHFP record check and require the user to perform\nmanual host verification of the DNS SSHFP record. (CVE-2014-2653)\n\nIt was found that OpenSSH did not properly handle certain AcceptEnv\nparameter values with wildcard characters. (CVE-2014-2532)\n\nThis update also fixes the following bugs:\n\n* Based on the SP800-131A information security standard, the generation of\na digital signature using the Digital Signature Algorithm (DSA) with the\nkey size of 1024 bits and RSA with the key size of less than 2048 bits is\ndisallowed after the year 2013. After this update, ssh-keygen no longer\ngenerates keys with less than 2048 bits in FIPS mode. However, the sshd\nservice accepts keys of size 1024 bits as well as larger keys for\ncompatibility reasons. (BZ#993580)\n\n* Previously, the openssh utility incorrectly set the oom_adj value to -17\nfor all of its children processes. This behavior was incorrect because the\nchildren processes were supposed to have this value set to 0. This update\napplies a patch to fix this bug and oom_adj is now properly set to 0 for\nall children processes as expected. (BZ#1010429)\n\n* Previously, if the sshd service failed to verify the checksum of an\ninstalled FIPS module using the fipscheck library, the information about\nthis failure was only provided at the standard error output of sshd. As a\nconsequence, the user could not notice this message and be uninformed when\na system had not been properly configured for FIPS mode. To fix this bug,\nthis behavior has been changed and sshd now sends such messages via the\nsyslog service. (BZ#1020803)\n\n* When keys provided by the pkcs11 library were removed from the ssh agent\nusing the \"ssh-add -e\" command, the user was prompted to enter a PIN. \nWith this update, a patch has been applied to allow the user to remove the\nkeys provided by pkcs11 without the PIN. (BZ#1042519)\n\nIn addition, this update adds the following enhancements:\n\n* With this update, ControlPersist has been added to OpenSSH. The option in\nconjunction with the ControlMaster configuration directive specifies that\nthe master connection remains open in the background after the initial\nclient connection has been closed. (BZ#953088)\n\n* When the sshd daemon is configured to force the internal SFTP session,\nand the user attempts to use a connection other than SFTP, the appropriate\nmessage is logged to the /var/log/secure file. (BZ#997377)\n\n* Support for Elliptic Curve Cryptography modes for key exchange (ECDH) and\nhost user keys (ECDSA) as specified by RFC5656 has been added to the\nopenssh packages. However, they are not enabled by default and the user has\nto enable them manually. For more information on how to configure ECDSA and\nECDH with OpenSSH, see: https://access.redhat.com/solutions/711953\n(BZ#1028335)\n\nAll openssh users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues and add these\nenhancements. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n953088 - OpenSSH adding ControlPersist patch to enable full usage of SSH control options\n1010429 - Openssh Incorrectly sets oom_adj in all Children after Performing a Reload\n1023043 - ssh_config manual page lists incorrect default value of KexAlgorithms\n1023044 - Fix man page for ssh-keygen because of certificate support\n1027197 - X11 Forwarding does not work with default config - error: Failed to allocate internet-domain X11 display socket\n1028643 - Connection remains when fork() fails. \n1077843 - CVE-2014-2532 openssh: AcceptEnv environment restriction bypass flaw\n1081338 - CVE-2014-2653 openssh: failure to check DNS SSHFP records in certain scenarios\n1108836 - ssh-keyscan should ignore SIGPIPE\n1111568 - AUTOCREATE_SERVER_KEYS=RSAONLY is not supported by init script\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nopenssh-5.3p1-104.el6.src.rpm\n\ni386:\nopenssh-5.3p1-104.el6.i686.rpm\nopenssh-askpass-5.3p1-104.el6.i686.rpm\nopenssh-clients-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-server-5.3p1-104.el6.i686.rpm\n\nx86_64:\nopenssh-5.3p1-104.el6.x86_64.rpm\nopenssh-askpass-5.3p1-104.el6.x86_64.rpm\nopenssh-clients-5.3p1-104.el6.x86_64.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-server-5.3p1-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\ni386:\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-ldap-5.3p1-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\n\nx86_64:\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-ldap-5.3p1-104.el6.x86_64.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nopenssh-5.3p1-104.el6.src.rpm\n\nx86_64:\nopenssh-5.3p1-104.el6.x86_64.rpm\nopenssh-clients-5.3p1-104.el6.x86_64.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-server-5.3p1-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nopenssh-askpass-5.3p1-104.el6.x86_64.rpm\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-ldap-5.3p1-104.el6.x86_64.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nopenssh-5.3p1-104.el6.src.rpm\n\ni386:\nopenssh-5.3p1-104.el6.i686.rpm\nopenssh-askpass-5.3p1-104.el6.i686.rpm\nopenssh-clients-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-server-5.3p1-104.el6.i686.rpm\n\nppc64:\nopenssh-5.3p1-104.el6.ppc64.rpm\nopenssh-askpass-5.3p1-104.el6.ppc64.rpm\nopenssh-clients-5.3p1-104.el6.ppc64.rpm\nopenssh-debuginfo-5.3p1-104.el6.ppc64.rpm\nopenssh-server-5.3p1-104.el6.ppc64.rpm\n\ns390x:\nopenssh-5.3p1-104.el6.s390x.rpm\nopenssh-askpass-5.3p1-104.el6.s390x.rpm\nopenssh-clients-5.3p1-104.el6.s390x.rpm\nopenssh-debuginfo-5.3p1-104.el6.s390x.rpm\nopenssh-server-5.3p1-104.el6.s390x.rpm\n\nx86_64:\nopenssh-5.3p1-104.el6.x86_64.rpm\nopenssh-askpass-5.3p1-104.el6.x86_64.rpm\nopenssh-clients-5.3p1-104.el6.x86_64.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-server-5.3p1-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-ldap-5.3p1-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\n\nppc64:\nopenssh-debuginfo-5.3p1-104.el6.ppc.rpm\nopenssh-debuginfo-5.3p1-104.el6.ppc64.rpm\nopenssh-ldap-5.3p1-104.el6.ppc64.rpm\npam_ssh_agent_auth-0.9.3-104.el6.ppc.rpm\npam_ssh_agent_auth-0.9.3-104.el6.ppc64.rpm\n\ns390x:\nopenssh-debuginfo-5.3p1-104.el6.s390.rpm\nopenssh-debuginfo-5.3p1-104.el6.s390x.rpm\nopenssh-ldap-5.3p1-104.el6.s390x.rpm\npam_ssh_agent_auth-0.9.3-104.el6.s390.rpm\npam_ssh_agent_auth-0.9.3-104.el6.s390x.rpm\n\nx86_64:\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-ldap-5.3p1-104.el6.x86_64.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nopenssh-5.3p1-104.el6.src.rpm\n\ni386:\nopenssh-5.3p1-104.el6.i686.rpm\nopenssh-askpass-5.3p1-104.el6.i686.rpm\nopenssh-clients-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-server-5.3p1-104.el6.i686.rpm\n\nx86_64:\nopenssh-5.3p1-104.el6.x86_64.rpm\nopenssh-askpass-5.3p1-104.el6.x86_64.rpm\nopenssh-clients-5.3p1-104.el6.x86_64.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-server-5.3p1-104.el6.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-ldap-5.3p1-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\n\nx86_64:\nopenssh-debuginfo-5.3p1-104.el6.i686.rpm\nopenssh-debuginfo-5.3p1-104.el6.x86_64.rpm\nopenssh-ldap-5.3p1-104.el6.x86_64.rpm\npam_ssh_agent_auth-0.9.3-104.el6.i686.rpm\npam_ssh_agent_auth-0.9.3-104.el6.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2014-2532.html\nhttps://www.redhat.com/security/data/cve/CVE-2014-2653.html\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/solutions/711953\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e.  More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2014 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFUPK1zXlSAg2UNWIIRAgLFAKCbc0zGun3IBr/70ChlueemUsEORgCfa8RL\nIT6RfneDJRTv3j8EqBZSrp0=\n=33Fn\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201405-06\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n    Title: OpenSSH: Multiple vulnerabilities\n     Date: May 11, 2014\n     Bugs: #231292, #247466, #386307, #410869, #419357, #456006, #505066\n       ID: 201405-06\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in OpenSSH, the worst of which\nmay allow remote attackers to execute arbitrary code. Please review\nthe CVE identifiers referenced below for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll OpenSSH users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=net-misc/openssh-6.6_p1-r1\"\n\nNOTE: One or more of the issues described in this advisory have been\nfixed in previous updates. They are included in this advisory for the\nsake of completeness. It is likely that your system is already no\nlonger affected by them. \n\nReferences\n==========\n\n[ 1 ] CVE-2008-5161\n      http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5161\n[ 2 ] CVE-2010-4478\n      http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4478\n[ 3 ] CVE-2010-4755\n      http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4755\n[ 4 ] CVE-2010-5107\n      http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-5107\n[ 5 ] CVE-2011-5000\n      http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5000\n[ 6 ] CVE-2012-0814\n      http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0814\n[ 7 ] CVE-2014-2532\n      http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2532\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n http://security.gentoo.org/glsa/glsa-201405-06.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2014 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\nAPPLE-SA-2015-09-30-3 OS X El Capitan 10.11\n\nOS X El Capitan 10.11 is now available and addresses the following:\n\nAddress Book\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local attacker may be able to inject arbitrary code to\nprocesses loading the Address Book framework\nDescription:  An issue existed in Address Book framework\u0027s handling\nof an environment variable. This issue was addressed through improved\nenvironment variable handling. \nCVE-ID\nCVE-2015-5897 : Dan Bastone of Gotham Digital Science\n\nAirScan\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker with a privileged network position may be able\nto extract payload from eSCL packets sent over a secure connection\nDescription:  An issue existed in the processing of eSCL packets. \nThis issue was addressed through improved validation checks. \nCVE-ID\nCVE-2015-5853 : an anonymous researcher\n\napache_mod_php\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in PHP\nDescription:  Multiple vulnerabilities existed in PHP versions prior\nto 5.5.27, including one which may have led to remote code execution. \nThis issue was addressed by updating PHP to version 5.5.27. \nCVE-ID\nCVE-2014-9425\nCVE-2014-9427\nCVE-2014-9652\nCVE-2014-9705\nCVE-2014-9709\nCVE-2015-0231\nCVE-2015-0232\nCVE-2015-0235\nCVE-2015-0273\nCVE-2015-1351\nCVE-2015-1352\nCVE-2015-2301\nCVE-2015-2305\nCVE-2015-2331\nCVE-2015-2348\nCVE-2015-2783\nCVE-2015-2787\nCVE-2015-3329\nCVE-2015-3330\n\nApple Online Store Kit\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious application may gain access to a user\u0027s keychain\nitems\nDescription:  An issue existed in validation of access control lists\nfor iCloud keychain items. This issue was addressed through improved\naccess control list checks. \nCVE-ID\nCVE-2015-5836 : XiaoFeng Wang of Indiana University, Luyi Xing of\nIndiana University, Tongxin Li of Peking University, Tongxin Li of\nPeking University, Xiaolong Bai of Tsinghua University\n\nAppleEvents\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A user connected through screen sharing can send Apple\nEvents to a local user\u0027s session\nDescription:  An issue existed with Apple Event filtering that\nallowed some users to send events to other users. This was addressed\nby improved Apple Event handling. \nCVE-ID\nCVE-2015-5849 : Jack Lawrence (@_jackhl)\n\nAudio\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Playing a malicious audio file may lead to an unexpected\napplication termination\nDescription:  A memory corruption issue existed in the handling of\naudio files. This issue issue was addressed through improved memory\nhandling. \nCVE-ID\nCVE-2015-5862 : YoungJin Yoon of Information Security Lab. (Adv.:\nProf. Taekyoung Kwon), Yonsei University, Seoul, Korea\n\nbash\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in bash\nDescription:  Multiple vulnerabilities existed in bash versions prior\nto 3.2 patch level 57. These issues were addressed by updating bash\nversion 3.2 to patch level 57. \nCVE-ID\nCVE-2014-6277\nCVE-2014-7186\nCVE-2014-7187\n\nCertificate Trust Policy\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Update to the certificate trust policy\nDescription:  The certificate trust policy was updated. The complete\nlist of certificates may be viewed at https://support.apple.com/en-\nus/HT202858. \n\nCFNetwork Cookies\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker in a privileged network position can track a\nuser\u0027s activity\nDescription:  A cross-domain cookie issue existed in the handling of\ntop level domains. The issue was address through improved\nrestrictions of cookie creation. \nCVE-ID\nCVE-2015-5885 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\nUniversity\n\nCFNetwork FTPProtocol\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Malicious FTP servers may be able to cause the client to\nperform reconnaissance on other hosts\nDescription:  An issue existed in the handling of FTP packets when\nusing the PASV command. This issue was resolved through improved\nvalidation. \nCVE-ID\nCVE-2015-5912 : Amit Klein\n\nCFNetwork HTTPProtocol\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A maliciously crafted URL may be able to bypass HSTS and\nleak sensitive data\nDescription:  A URL parsing vulnerability existed in HSTS handling. \nThis issue was addressed through improved URL parsing. \nCVE-ID\nCVE-2015-5858 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\nUniversity\n\nCFNetwork HTTPProtocol\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious website may be able to track users in Safari\nprivate browsing mode\nDescription:  An issue existed in the handling of HSTS state in\nSafari private browsing mode. This issue was addressed through\nimproved state handling. \nCVE-ID\nCVE-2015-5860 : Sam Greenhalgh of RadicalResearch Ltd\n\nCFNetwork Proxies\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Connecting to a malicious web proxy may set malicious\ncookies for a website\nDescription:  An issue existed in the handling of proxy connect\nresponses. This issue was addressed by removing the set-cookie header\nwhile parsing the connect response. \nCVE-ID\nCVE-2015-5841 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\nUniversity\n\nCFNetwork SSL\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker with a privileged network position may intercept\nSSL/TLS connections\nDescription:  A certificate validation issue existed in NSURL when a\ncertificate changed. This issue was addressed through improved\ncertificate validation. \nCVE-ID\nCVE-2015-5824 : Timothy J. Wood of The Omni Group\n\nCFNetwork SSL\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker may be able to decrypt data protected by SSL\nDescription:  There are known attacks on the confidentiality of RC4. \nAn attacker could force the use of RC4, even if the server preferred\nbetter ciphers, by blocking TLS 1.0 and higher connections until\nCFNetwork tried SSL 3.0, which only allows RC4. This issue was\naddressed by removing the fallback to SSL 3.0. \n\nCoreCrypto\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker may be able to determine a private key\nDescription:  By observing many signing or decryption attempts, an\nattacker may have been able to determine the RSA private key. This\nissue was addressed using improved encryption algorithms. \n\nCoreText\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Processing a maliciously crafted font file may lead to\narbitrary code execution\nDescription:  A memory corruption issue existed in the processing of\nfont files. This issue was addressed through improved input\nvalidation. \nCVE-ID\nCVE-2015-5874 : John Villamil (@day6reak), Yahoo Pentest Team\n\nDev Tools\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious application may be able to execute arbitrary\ncode with system privileges\nDescription:  A memory corruption issue existed in dyld. This was\naddressed through improved memory handling. \nCVE-ID\nCVE-2015-5876 : beist of grayhash\n\nDev Tools\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An application may be able to bypass code signing\nDescription:  An issue existed with validation of the code signature\nof executables. This issue was addressed through improved bounds\nchecking. \nCVE-ID\nCVE-2015-5839 : @PanguTeam\n\nDisk Images\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nsystem privileges\nDescription:  A memory corruption issue existed in DiskImages. This\nissue was addressed through improved memory handling. \nCVE-ID\nCVE-2015-5847 : Filippo Bigarella, Luca Todesco\n\ndyld\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An application may be able to bypass code signing\nDescription:  An issue existed with validation of the code signature\nof executables. This issue was addressed through improved bounds\nchecking. \nCVE-ID\nCVE-2015-5839 : TaiG Jailbreak Team\n\nEFI\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious application can prevent some systems from\nbooting\nDescription:  An issue existed with the addresses covered by the\nprotected range register. This issue was fixed by changing the\nprotected range. \nCVE-ID\nCVE-2015-5900 : Xeno Kovah \u0026 Corey Kallenberg from LegbaCore\n\nEFI\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious Apple Ethernet Thunderbolt adapter may be able\nto affect firmware flashing\nDescription:  Apple Ethernet Thunderbolt adapters could modify the\nhost firmware if connected during an EFI update. This issue was\naddressed by not loading option ROMs during updates. \nCVE-ID\nCVE-2015-5914 : Trammell Hudson of Two Sigma Investments and snare\n\nFinder\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  The \"Secure Empty Trash\" feature may not securely delete\nfiles placed in the Trash\nDescription:  An issue existed in guaranteeing secure deletion of\nTrash files on some systems, such as those with flash storage. This\nissue was addressed by removing the \"Secure Empty Trash\" option. \nCVE-ID\nCVE-2015-5901 : Apple\n\nGame Center\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious Game Center application may be able to access a\nplayer\u0027s email address\nDescription:  An issue existed in Game Center in the handling of a\nplayer\u0027s email. This issue was addressed through improved access\nrestrictions. \nCVE-ID\nCVE-2015-5855 : Nasser Alnasser\n\nHeimdal\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker may be able to replay Kerberos credentials to\nthe SMB server\nDescription:  An authentication issue existed in Kerberos\ncredentials. This issue was addressed through additional validation\nof credentials using a list of recently seen credentials. \nCVE-ID\nCVE-2015-5913 : Tarun Chopra of Microsoft Corporation, U.S. and Yu\nFan of Microsoft Corporation, China\n\nICU\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in ICU\nDescription:  Multiple vulnerabilities existed in ICU versions prior\nto 53.1.0. These issues were addressed by updating ICU to version\n55.1. \nCVE-ID\nCVE-2014-8146\nCVE-2014-8147\nCVE-2015-5922\n\nInstall Framework Legacy\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to gain root privileges\nDescription:  A restriction issue existed in the Install private\nframework containing a privileged executable. This issue was\naddressed by removing the executable. \nCVE-ID\nCVE-2015-5888 : Apple\n\nIntel Graphics Driver\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nsystem privileges\nDescription:  Multiple memory corruption issues existed in the Intel\nGraphics Driver. These issues were addressed through improved memory\nhandling. \nCVE-ID\nCVE-2015-5830 : Yuki MIZUNO (@mzyy94)\nCVE-2015-5877 : Camillus Gerard Cai\n\nIOAudioFamily\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to determine kernel memory layout\nDescription:  An issue existed in IOAudioFamily that led to the\ndisclosure of kernel memory content. This issue was addressed by\npermuting kernel pointers. \nCVE-ID\nCVE-2015-5864 : Luca Todesco\n\nIOGraphics\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple memory corruption issues existed in the\nkernel. These issues were addressed through improved memory handling. \nCVE-ID\nCVE-2015-5871 : Ilja van Sprundel of IOActive\nCVE-2015-5872 : Ilja van Sprundel of IOActive\nCVE-2015-5873 : Ilja van Sprundel of IOActive\nCVE-2015-5890 : Ilja van Sprundel of IOActive\n\nIOGraphics\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious application may be able to determine kernel\nmemory layout\nDescription:  An issue existed in IOGraphics which could have led to\nthe disclosure of kernel memory layout. This issue was addressed\nthrough improved memory management. \nCVE-ID\nCVE-2015-5865 : Luca Todesco\n\nIOHIDFamily\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious application may be able to execute arbitrary\ncode with system privileges\nDescription:  Multiple memory corruption issues existed in\nIOHIDFamily. These issues were addressed through improved memory\nhandling. \nCVE-ID\nCVE-2015-5866 : Apple\nCVE-2015-5867 : moony li of Trend Micro\n\nIOStorageFamily\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local attacker may be able to read kernel memory\nDescription:  A memory initialization issue existed in the kernel. \nThis issue was addressed through improved memory handling. \nCVE-ID\nCVE-2015-5863 : Ilja van Sprundel of IOActive\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple memory corruption issues existed in the\nKernel. These issues were addressed through improved memory handling. \nCVE-ID\nCVE-2015-5868 : Cererdlong of Alibaba Mobile Security Team\nCVE-2015-5896 : Maxime Villard of m00nbsd\nCVE-2015-5903 : CESG\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local process can modify other processes without\nentitlement checks\nDescription:  An issue existed where root processes using the\nprocessor_set_tasks API were allowed to retrieve the task ports of\nother processes. This issue was addressed through additional\nentitlement checks. \nCVE-ID\nCVE-2015-5882 : Pedro Vilaca, working from original research by\nMing-chieh Pan and Sung-ting Tsai; Jonathan Levin\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local attacker may control the value of stack cookies\nDescription:  Multiple weaknesses existed in the generation of user\nspace stack cookies. These issues were addressed through improved\ngeneration of stack cookies. \nCVE-ID\nCVE-2013-3951 : Stefan Esser\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker may be able to launch denial of service attacks\non targeted TCP connections without knowing the correct sequence\nnumber\nDescription:  An issue existed in xnu\u0027s validation of TCP packet\nheaders. This issue was addressed through improved TCP packet header\nvalidation. \nCVE-ID\nCVE-2015-5879 : Jonathan Looney\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker in a local LAN segment may disable IPv6 routing\nDescription:  An insufficient validation issue existed in the\nhandling of IPv6 router advertisements that allowed an attacker to\nset the hop limit to an arbitrary value. This issue was addressed by\nenforcing a minimum hop limit. \nCVE-ID\nCVE-2015-5869 : Dennis Spindel Ljungmark\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to determine kernel memory layout\nDescription:  An issue existed that led to the disclosure of kernel\nmemory layout. This was addressed through improved initialization of\nkernel memory structures. \nCVE-ID\nCVE-2015-5842 : beist of grayhash\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to determine kernel memory layout\nDescription:  An issue existed in debugging interfaces that led to\nthe disclosure of memory content. This issue was addressed by\nsanitizing output from debugging interfaces. \nCVE-ID\nCVE-2015-5870 : Apple\n\nKernel\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to cause a system denial of service\nDescription:  A state management issue existed in debugging\nfunctionality. This issue was addressed through improved validation. \nCVE-ID\nCVE-2015-5902 : Sergi Alvarez (pancake) of NowSecure Research Team\n\nlibc\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue existed in the kernel. This\nissue was addressed through improved memory handling. \nCVE-ID\nCVE-2014-8611 : Adrian Chadd and Alfred Perlstein of Norse\nCorporation\n\nlibpthread\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue existed in the kernel. This\nissue was addressed through improved memory handling. \nCVE-ID\nCVE-2015-5899 : Lufeng Li of Qihoo 360 Vulcan Team\n\nlibxpc\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Many SSH connections could cause a denial of service\nDescription:  launchd had no limit on the number of processes that\ncould be started by a network connection. This issue was addressed by\nlimiting the number of SSH processes to 40. \nCVE-ID\nCVE-2015-5881 : Apple\n\nLogin Window\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  The screen lock may not engage after the specified time\nperiod\nDescription:  An issue existed with captured display locking. The\nissue was addressed through improved lock handling. \nCVE-ID\nCVE-2015-5833 : Carlos Moreira, Rainer Dorau of rainer dorau\ninformationsdesign, Chris Nehren, Kai Takac, Hans Douma, Toni\nVaahtera, and an anonymous researcher\n\nlukemftpd\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A remote attacker may be able to deny service to the FTP\nserver\nDescription:  A glob-processing issue existed in tnftpd. This issue\nwas addressed through improved glob validation. \nCVE-ID\nCVE-2015-5917 : Maksymilian Arciemowicz of cxsecurity.com\n\nMail\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Printing an email may leak sensitive user information\nDescription:  An issue existed in Mail which bypassed user\npreferences when printing an email. This issue was addressed through\nimproved user preference enforcement. \nCVE-ID\nCVE-2015-5881 : Owen DeLong of Akamai Technologies, Noritaka Kamiya,\nDennis Klein from Eschenburg, Germany, Jeff Hammett of Systim\nTechnology Partners\n\nMail\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  An attacker in a privileged network position may be able to\nintercept attachments of S/MIME-encrypted e-mail sent via Mail Drop\nDescription:  An issue existed in handling encryption parameters for\nlarge email attachments sent via Mail Drop. The issue is addressed by\nno longer offering Mail Drop when sending an encrypted e-mail. \nCVE-ID\nCVE-2015-5884 : John McCombs of Integrated Mapping Ltd\n\nMultipeer Connectivity\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local attacker may be able to observe unprotected\nmultipeer data\nDescription:  An issue existed in convenience initializer handling in\nwhich encryption could be actively downgraded to a non-encrypted\nsession. This issue was addressed by changing the convenience\ninitializer to require encryption. \nCVE-ID\nCVE-2015-5851 : Alban Diquet (@nabla_c0d3) of Data Theorem\n\nNetworkExtension\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A malicious application may be able to determine kernel\nmemory layout\nDescription:  An uninitialized memory issue in the kernel led to the\ndisclosure of kernel memory content. This issue was addressed through\nimproved memory initialization. \nCVE-ID\nCVE-2015-5831 : Maxime Villard of m00nbsd\n\nNotes\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to leak sensitive user information\nDescription:  An issue existed in parsing links in the Notes\napplication. This issue was addressed through improved input\nvalidation. \nCVE-ID\nCVE-2015-5878 : Craig Young of Tripwire VERT, an anonymous researcher\n\nNotes\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to leak sensitive user information\nDescription:  A cross-site scripting issue existed in parsing text by\nthe Notes application. This issue was addressed through improved\ninput validation. \nCVE-ID\nCVE-2015-5875 : xisigr of Tencent\u0027s Xuanwu LAB (www.tencent.com)\n\nOpenSSH\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in OpenSSH\nDescription:  Multiple vulnerabilities existed in OpenSSH versions\nprior to 6.9. These issues were addressed by updating OpenSSH to\nversion 6.9. \nCVE-ID\nCVE-2014-2532\n\nOpenSSL\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in OpenSSL\nDescription:  Multiple vulnerabilities existed in OpenSSL versions\nprior to 0.9.8zg. These were addressed by updating OpenSSL to version\n0.9.8zg. \nCVE-ID\nCVE-2015-0286\nCVE-2015-0287\n\nprocmail\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in procmail\nDescription:  Multiple vulnerabilities existed in procmail versions\nprior to 3.22. These issues were addressed by removing procmail. \nCVE-ID\nCVE-2014-3618\n\nremote_cmds\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with root\nprivileges\nDescription:  An issue existed in the usage of environment variables\nby the rsh binary. This issue was addressed by dropping setuid\nprivileges from the rsh binary. \nCVE-ID\nCVE-2015-5889 : Philip Pettersson\n\nremovefile\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Processing malicious data may lead to unexpected application\ntermination\nDescription:  An overflow fault existed in the checkint division\nroutines. This issue was addressed with improved division routines. \nCVE-ID\nCVE-2015-5840 : an anonymous researcher\n\nRuby\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in Ruby\nDescription:  Multiple vulnerabilities existed in Ruby versions prior\nto 2.0.0p645. These were addressed by updating Ruby to version\n2.0.0p645. \nCVE-ID\nCVE-2014-8080\nCVE-2014-8090\nCVE-2015-1855\n\nSecurity\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  The lock state of the keychain may be incorrectly displayed\nto the user\nDescription:  A state management issue existed in the way keychain\nlock status was tracked. This issue was addressed through improved\nstate management. \nCVE-ID\nCVE-2015-5915 : Peter Walz of University of Minnesota, David Ephron,\nEric E. Lawrence, Apple\n\nSecurity\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A trust evaluation configured to require revocation checking\nmay succeed even if revocation checking fails\nDescription:  The kSecRevocationRequirePositiveResponse flag was\nspecified but not implemented. This issue was addressed by\nimplementing the flag. \nCVE-ID\nCVE-2015-5894 : Hannes Oud of kWallet GmbH\n\nSecurity\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A remote server may prompt for a certificate before\nidentifying itself\nDescription:  Secure Transport accepted the CertificateRequest\nmessage before the ServerKeyExchange message. This issue was\naddressed by requiring the ServerKeyExchange first. \nCVE-ID\nCVE-2015-5887 : Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine\nDelignat-Lavaud, Alfredo Pironti, and Jean Karim Zinzindohoue of\nINRIA Paris-Rocquencourt, and Cedric Fournet and Markulf Kohlweiss of\nMicrosoft Research, Pierre-Yves Strub of IMDEA Software Institute\n\nSMB\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue existed in the kernel. This\nissue was addressed through improved memory handling. \nCVE-ID\nCVE-2015-5891 : Ilja van Sprundel of IOActive\n\nSMB\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local user may be able to determine kernel memory layout\nDescription:  An issue existed in SMBClient that led to the\ndisclosure of kernel memory content. This issue was addressed through\nimproved bounds checking. \nCVE-ID\nCVE-2015-5893 : Ilja van Sprundel of IOActive\n\nSQLite\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Multiple vulnerabilities in SQLite v3.8.5\nDescription:  Multiple vulnerabilities existed in SQLite v3.8.5. \nThese issues were addressed by updating SQLite to version 3.8.10.2. \nCVE-ID\nCVE-2015-3414\nCVE-2015-3415\nCVE-2015-3416\n\nTelephony\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local attacker can place phone calls without the user\u0027s\nknowledge when using Continuity\nDescription:  An issue existed in the authorization checks for\nplacing phone calls. This issue was addressed through improved\nauthorization checks. \nCVE-ID\nCVE-2015-3785 : Dan Bastone of Gotham Digital Science\n\nTerminal\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Maliciously crafted text could mislead the user in Terminal\nDescription:  Terminal did not handle bidirectional override\ncharacters in the same way when displaying text and when selecting\ntext. This issue was addressed by suppressing bidirectional override\ncharacters in Terminal. \nCVE-ID\nCVE-2015-5883 : an anonymous researcher\n\ntidy\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  Visiting a maliciously crafted website may lead to arbitrary\ncode execution\nDescription:  Multiple memory corruption issues existed in tidy. \nThese issues were addressed through improved memory handling. \nCVE-ID\nCVE-2015-5522 : Fernando Munoz of NULLGroup.com\nCVE-2015-5523 : Fernando Munoz of NULLGroup.com\n\nTime Machine\nAvailable for:  Mac OS X v10.6.8 and later\nImpact:  A local attacker may gain access to keychain items\nDescription:  An issue existed in backups by the Time Machine\nframework. This issue was addressed through improved coverage of Time\nMachine backups. \nCVE-ID\nCVE-2015-5854 : Jonas Magazinius of Assured AB\n\nNote:  OS X El Capitan 10.11 includes the security content of\nSafari 9: https://support.apple.com/kb/HT205265. \n\nOS X El Capitan 10.11 may be obtained from the Mac App Store:\nhttp://www.apple.com/support/downloads/\n\nInformation will also be posted to the Apple Security Updates\nweb site: https://support.apple.com/kb/HT201222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n\n-----BEGIN PGP SIGNATURE-----\nComment: GPGTools - http://gpgtools.org\n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\ng6jld/w5tPuCFhGucE7Z\n=XciV\n-----END PGP SIGNATURE-----\n. \n \n Matthew Vernon reported that if a SSH server offers a HostCertificate\n that the ssh client doesn\u0026#039;t accept, then the client doesn\u0026#039;t check\n the DNS for SSHFP records. As a consequence a malicious server can\n disable SSHFP-checking by presenting a certificate (CVE-2014-2653). \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2653\n http://advisories.mageia.org/MGASA-2014-0143.html\n http://advisories.mageia.org/MGASA-2014-0166.html\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Business Server 1/X86_64:\n 753bd40deb60429adc6a7c1afd63ee3d  mbs1/x86_64/openssh-5.9p1-6.3.mbs1.x86_64.rpm\n 377e7fbb14f72a1e32da41f19be7baa8  mbs1/x86_64/openssh-askpass-5.9p1-6.3.mbs1.x86_64.rpm\n a906db623fc8d56eab9b8b99b1af84d9  mbs1/x86_64/openssh-askpass-common-5.9p1-6.3.mbs1.x86_64.rpm\n 9fc03d4929efdf21a26aef308eb66f14  mbs1/x86_64/openssh-askpass-gnome-5.9p1-6.3.mbs1.x86_64.rpm\n f2dbea4a0a8109bc835c69e871f07a69  mbs1/x86_64/openssh-clients-5.9p1-6.3.mbs1.x86_64.rpm\n a20d329b8332ff7f7f10dd541a3865a9  mbs1/x86_64/openssh-server-5.9p1-6.3.mbs1.x86_64.rpm \n 0fd2c0a9338a7e8e8747c2ea3ae43c49  mbs1/SRPMS/openssh-5.9p1-6.3.mbs1.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you. ============================================================================\nUbuntu Security Notice USN-2155-1\nMarch 25, 2014\n\nopenssh vulnerability\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 13.10\n- Ubuntu 12.10\n- Ubuntu 12.04 LTS\n- Ubuntu 10.04 LTS\n\nSummary:\n\nOpenSSH incorrectly handled environment restrictions with wildcards. \n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 13.10:\n  openssh-server                  1:6.2p2-6ubuntu0.2\n\nUbuntu 12.10:\n  openssh-server                  1:6.0p1-3ubuntu1.1\n\nUbuntu 12.04 LTS:\n  openssh-server                  1:5.9p1-5ubuntu1.2\n\nUbuntu 10.04 LTS:\n  openssh-server                  1:5.3p1-3ubuntu7.1\n\nIn general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04499681\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04499681\nVersion: 1\n\nHPSBUX03188 SSRT101487 rev.1 - HP-UX running HP Secure Shell, Remote Denial\nof Service (DoS) and other Vulnerabilities\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2014-11-07\nLast Updated: 2014-11-07\n\nPotential Security Impact: Remote Denial of Service (DoS) and other\nvulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP-UX running HP\nSecure Shell. These vulnerabilities could be exploited remotely to create a\nDenial of Service (DoS) and other vulnerabilities. \n\nReferences:\n\nCVE-2013-4548 - remote Permissions, Privileges, and Access Control (CWE-264)\n\nCVE-2014-1692 - remote Denial of Service (DoS), Buffer Errors (CWE-119)\n\nCVE-2014-2532 - remote Permissions, Privileges, and Access Control (CWE-264)\n\nCVE-2014-2653 - remote Input Validation (CWE-20)\n\nSSRT101487\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.11 running HP Secure Shell before version A.06.20.010\n\nHP-UX B.11.23 running HP Secure Shell before version A.06.20.011\n\nHP-UX B.11.31 running HP Secure Shell before version A.06.20.012\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2013-4548    (AV:N/AC:M/Au:S/C:P/I:P/A:P)       6.0\nCVE-2014-1692    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\nCVE-2014-2532    (AV:N/AC:M/Au:N/C:P/I:P/A:N)       5.8\nCVE-2014-2653    (AV:N/AC:M/Au:N/C:P/I:P/A:N)       5.8\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following software updates to resolve this vulnerability. \nThe updates are available for download from:\nhttp://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=\nT1471AA\n\nOS Release\n HP Secure Shell Version\n Depot Name\n\nHP-UX B.11.11 (11i v1)\n A.06.20.010 or subsequent\n HP_UX_11i_v1_T1471AA_A.06.20.010_HP-UX_B.11.11_32_64.depot\n\nHP-UX B.11.23 (11i v2)\n A.06.20.011 or subsequent\n HP_UX_11i_v2_T1471AA_A.06.20.011_HP-UX_B.11.23_IA_PA.depot\n\nHP-UX B.11.31 (11i v3)\n A.06.20.012 or subsequent\n HP_UX_11i_v3_SecureShell_A.06.20.012_HP-UX_B.11.31_IA_PA.depot\n\nMANUAL ACTIONS: Yes - Update\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant:\nHP-UX Software Assistant is an enhanced application that replaces HP-UX\nSecurity Patch Check. It analyzes all HP-issued Security Bulletins and lists\nrecommended actions that may apply to a specific HP-UX system. It can also\ndownload patches and create a depot automatically. For more information see:\nhttps://www.hp.com/go/swa\n\nAFFECTED VERSIONS\n\nHP-UX B.11.11\n==============\nSecure_Shell.SECURE_SHELL\naction: install revision A.06.20.010 or subsequent\n\nHP-UX B.11.23\n==============\nSecure_Shell.SECSH-CMN\nSecure_Shell.SECURE_SHELL\naction: install revision A.06.20.011 or subsequent\n\nHP-UX B.11.31\n==============\nSecure_Shell.SECSH-CMN\nSecure_Shell.SECURE_SHELL\naction: install revision A.06.20.012 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY: Version:1 (rev.1) - 7 November 2014 Initial Release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2014 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-2532"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          },
          {
            "db": "BID",
            "id": "66355"
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-2532"
          },
          {
            "db": "PACKETSTORM",
            "id": "125940"
          },
          {
            "db": "PACKETSTORM",
            "id": "128654"
          },
          {
            "db": "PACKETSTORM",
            "id": "126580"
          },
          {
            "db": "PACKETSTORM",
            "id": "133803"
          },
          {
            "db": "PACKETSTORM",
            "id": "126075"
          },
          {
            "db": "PACKETSTORM",
            "id": "125859"
          },
          {
            "db": "PACKETSTORM",
            "id": "129077"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-2532",
            "trust": 3.5
          },
          {
            "db": "BID",
            "id": "66355",
            "trust": 1.4
          },
          {
            "db": "SECUNIA",
            "id": "59855",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59313",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57488",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "57574",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1029925",
            "trust": 1.1
          },
          {
            "db": "JVN",
            "id": "JVNVU97220341",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718",
            "trust": 0.8
          },
          {
            "db": "MLIST",
            "id": "[SECURITY-ANNOUNCE] 20140315 ANNOUNCE: OPENSSH 6.6 RELEASED",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336",
            "trust": 0.6
          },
          {
            "db": "JUNIPER",
            "id": "JSA10661",
            "trust": 0.3
          },
          {
            "db": "VULMON",
            "id": "CVE-2014-2532",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "125940",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "128654",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126580",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "133803",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "126075",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "125859",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "129077",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-2532"
          },
          {
            "db": "BID",
            "id": "66355"
          },
          {
            "db": "PACKETSTORM",
            "id": "125940"
          },
          {
            "db": "PACKETSTORM",
            "id": "128654"
          },
          {
            "db": "PACKETSTORM",
            "id": "126580"
          },
          {
            "db": "PACKETSTORM",
            "id": "133803"
          },
          {
            "db": "PACKETSTORM",
            "id": "126075"
          },
          {
            "db": "PACKETSTORM",
            "id": "125859"
          },
          {
            "db": "PACKETSTORM",
            "id": "129077"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-2532"
          }
        ]
      },
      "id": "VAR-201403-0275",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.45272481500000006
      },
      "last_update_date": "2026-04-10T23:16:47.157000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "APPLE-SA-2015-09-30-3 OS X El Capitan 10.11",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html"
          },
          {
            "title": "HT205267",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT205267"
          },
          {
            "title": "HT205267",
            "trust": 0.8,
            "url": "http://support.apple.com/ja-jp/HT205267"
          },
          {
            "title": "HPSBUX03188 SSRT101487",
            "trust": 0.8,
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c04499681"
          },
          {
            "title": "AIX OpenSSH Vulnerability",
            "trust": 0.8,
            "url": "http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc"
          },
          {
            "title": "release-6.6",
            "trust": 0.8,
            "url": "http://www.openssh.com/txt/release-6.6"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.openssh.org/index.html"
          },
          {
            "title": "Text Form of Oracle Critical Patch Update - October 2016 Risk Matrices",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016verbose-2881725.html"
          },
          {
            "title": "Oracle Critical Patch Update Advisory - October 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
          },
          {
            "title": "RHSA-2014:1552",
            "trust": 0.8,
            "url": "http://rhn.redhat.com/errata/RHSA-2014-1552.html"
          },
          {
            "title": "October 2016 Critical Patch Update Released",
            "trust": 0.8,
            "url": "https://blogs.oracle.com/security/entry/october_2016_critical_patch_update"
          },
          {
            "title": "openssh-6.6",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=48725"
          },
          {
            "title": "Ubuntu Security Notice: openssh vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2155-1"
          },
          {
            "title": "Debian CVElist Bug Report Logs: If server offers certificate, doesn\u0027t fall back to checking SSHFP records (CVE-2014-2653)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=e2b29b5960fd84d7d2fed1e9bad51e83"
          },
          {
            "title": "Debian Security Advisories: DSA-2894-1 openssh -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=097ff1ee5afacf7965034aa9b90de6de"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2014-369",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-369"
          },
          {
            "title": "Brocade Security Advisories: BSA-2017-253",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=brocade_security_advisories\u0026qid=2d463347de7f8b5b2483cc00eb7338bc"
          },
          {
            "title": "Symantec Security Advisories: SA104 : OpenSSH Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=b643e473a764678a8d1ded300d5699b6"
          },
          {
            "title": "Apple: OS X El Capitan v10.11",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=e88bab658248444f5dffc23fd95859e7"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - April 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=122319027ae43d6d626710f1b1bb1d43"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - October 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=05aabe19d38058b7814ef5514aab4c0c"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - July 2018",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=5f8c525f1408011628af1792207b2099"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-2532"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-264",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-2532"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.7,
            "url": "http://marc.info/?l=openbsd-security-announce\u0026m=139492048027313\u0026w=2"
          },
          {
            "trust": 1.4,
            "url": "http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc"
          },
          {
            "trust": 1.4,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
          },
          {
            "trust": 1.2,
            "url": "http://advisories.mageia.org/mgasa-2014-0143.html"
          },
          {
            "trust": 1.2,
            "url": "http://rhn.redhat.com/errata/rhsa-2014-1552.html"
          },
          {
            "trust": 1.2,
            "url": "http://www.ubuntu.com/usn/usn-2155-1"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce/2015/sep/msg00008.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-june/134026.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-may/133537.html"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=141576985122836\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57488"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/57574"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59313"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59855"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2014/dsa-2894"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2014:068"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:095"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/66355"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1029925"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/91986"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/ht205267"
          },
          {
            "trust": 1.0,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-2532"
          },
          {
            "trust": 0.9,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-2532"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97220341/index.html"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-2532"
          },
          {
            "trust": 0.3,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1077843"
          },
          {
            "trust": 0.3,
            "url": "http://www.openssh.com/txt/release-6.6"
          },
          {
            "trust": 0.3,
            "url": "http://www.openssh.com"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1021316"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10661\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2016-2881694.html"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04499681"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097903"
          },
          {
            "trust": 0.3,
            "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5096510"
          },
          {
            "trust": 0.3,
            "url": "http://support.f5.com/kb/en-us/solutions/public/15000/400/sol15430.html?ref=rss"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-2653"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/264.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.rapid7.com/db/vulnerabilities/amazon-linux-ami-alas-2014-369"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2155-1/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=41307"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com"
          },
          {
            "trust": 0.1,
            "url": "http://osuosl.org)"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/gpg-key"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-2532.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/#package"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/solutions/711953"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2014-2653.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.1,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-4478"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0814"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-5107"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/glsa/glsa-201405-06.xml"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4478"
          },
          {
            "trust": 0.1,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-4755"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-5107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-5161"
          },
          {
            "trust": 0.1,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-5161"
          },
          {
            "trust": 0.1,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-5000"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-0814"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-5000"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-4755"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0287"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht201222"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0235"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8146"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0231"
          },
          {
            "trust": 0.1,
            "url": "http://www.apple.com/support/downloads/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8080"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-2331"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-7187"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1351"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8090"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9705"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1352"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/en-"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-3951"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8147"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0232"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-2301"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht205265."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8611"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9427"
          },
          {
            "trust": 0.1,
            "url": "http://gpgtools.org"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1855"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-2305"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9425"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-7186"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3618"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9709"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0273"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6277"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9652"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://www.tencent.com)"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/en/support/security/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/en/support/security/advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://advisories.mageia.org/mgasa-2014-0166.html"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-2653"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssh/1:6.2p2-6ubuntu0.2"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssh/1:5.9p1-5ubuntu1.2"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssh/1:5.3p1-3ubuntu7.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/openssh/1:6.0p1-3ubuntu1.1"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-1692"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-4548"
          },
          {
            "trust": 0.1,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.1,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.1,
            "url": "http://h20293.www2.hp.com/portal/swdepot/displayproductinfo.do?productnumber="
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2014-2532"
          },
          {
            "db": "BID",
            "id": "66355"
          },
          {
            "db": "PACKETSTORM",
            "id": "125940"
          },
          {
            "db": "PACKETSTORM",
            "id": "128654"
          },
          {
            "db": "PACKETSTORM",
            "id": "126580"
          },
          {
            "db": "PACKETSTORM",
            "id": "133803"
          },
          {
            "db": "PACKETSTORM",
            "id": "126075"
          },
          {
            "db": "PACKETSTORM",
            "id": "125859"
          },
          {
            "db": "PACKETSTORM",
            "id": "129077"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-2532"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2014-2532",
            "ident": null
          },
          {
            "db": "BID",
            "id": "66355",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "125940",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "128654",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126580",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "133803",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "126075",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "125859",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "129077",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2014-2532",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-03-18T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-2532",
            "ident": null
          },
          {
            "date": "2014-03-21T00:00:00",
            "db": "BID",
            "id": "66355",
            "ident": null
          },
          {
            "date": "2014-03-30T16:38:00",
            "db": "PACKETSTORM",
            "id": "125940",
            "ident": null
          },
          {
            "date": "2014-10-14T23:03:32",
            "db": "PACKETSTORM",
            "id": "128654",
            "ident": null
          },
          {
            "date": "2014-05-12T18:51:17",
            "db": "PACKETSTORM",
            "id": "126580",
            "ident": null
          },
          {
            "date": "2015-10-01T16:33:47",
            "db": "PACKETSTORM",
            "id": "133803",
            "ident": null
          },
          {
            "date": "2014-04-09T22:40:33",
            "db": "PACKETSTORM",
            "id": "126075",
            "ident": null
          },
          {
            "date": "2014-03-25T18:47:40",
            "db": "PACKETSTORM",
            "id": "125859",
            "ident": null
          },
          {
            "date": "2014-11-12T18:14:54",
            "db": "PACKETSTORM",
            "id": "129077",
            "ident": null
          },
          {
            "date": "2014-03-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201403-336",
            "ident": null
          },
          {
            "date": "2014-03-19T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-001718",
            "ident": null
          },
          {
            "date": "2014-03-18T05:18:19",
            "db": "NVD",
            "id": "CVE-2014-2532",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2018-07-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2014-2532",
            "ident": null
          },
          {
            "date": "2016-10-26T01:14:00",
            "db": "BID",
            "id": "66355",
            "ident": null
          },
          {
            "date": "2014-03-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201403-336",
            "ident": null
          },
          {
            "date": "2016-11-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-001718",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-2532",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "128654"
          },
          {
            "db": "PACKETSTORM",
            "id": "126580"
          },
          {
            "db": "PACKETSTORM",
            "id": "126075"
          },
          {
            "db": "PACKETSTORM",
            "id": "125859"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          }
        ],
        "trust": 1.0
      },
      "title": {
        "_id": null,
        "data": "OpenSSH of  sshd Vulnerabilities that can circumvent environmental restrictions",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001718"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "permissions and access control",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201403-336"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201603-0222

    Vulnerability from variot - Updated: 2026-04-10 23:16

    The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document. libxml2 is prone to multiple memory-corruption vulnerabilities. A remote attacker can leverage these issues to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition. Apple iOS, OS X, Safari, tvOS and watchOS are all products of Apple Inc. in the United States. Apple iOS is a set of operating systems developed for mobile devices; Apple OS X is a set of dedicated operating systems developed for Mac computers; and the default browser that comes with the iOS operating system; tvOS is a smart TV operating system; watchOS is a smart watch operating system. A security vulnerability exists in libxml2 of several Apple products. The following products and versions are affected: Apple iOS versions prior to 9.3, OS X versions prior to 10.11.4, Safari versions prior to 9.1, tvOS versions prior to 9.2, and watchOS versions prior to 2.2. Summary:

    An update for libxml2 is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.

    Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

    1. Description:

    The libxml2 library is a development toolbox providing the implementation of various XML standards. (CVE-2016-1762, CVE-2016-1833, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447, CVE-2016-4448, CVE-2016-4449)

    1. Solution:

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    For the update to take effect, all applications linked to the libxml2 library must be restarted, or the system rebooted.

    1. Package List:

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    i386: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-python-2.7.6-21.el6_8.1.i686.rpm

    ppc64: libxml2-2.7.6-21.el6_8.1.ppc.rpm libxml2-2.7.6-21.el6_8.1.ppc64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.ppc.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm libxml2-devel-2.7.6-21.el6_8.1.ppc.rpm libxml2-devel-2.7.6-21.el6_8.1.ppc64.rpm libxml2-python-2.7.6-21.el6_8.1.ppc64.rpm

    s390x: libxml2-2.7.6-21.el6_8.1.s390.rpm libxml2-2.7.6-21.el6_8.1.s390x.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.s390.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm libxml2-devel-2.7.6-21.el6_8.1.s390.rpm libxml2-devel-2.7.6-21.el6_8.1.s390x.rpm libxml2-python-2.7.6-21.el6_8.1.s390x.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-static-2.7.6-21.el6_8.1.i686.rpm

    ppc64: libxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm libxml2-static-2.7.6-21.el6_8.1.ppc64.rpm

    s390x: libxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm libxml2-static-2.7.6-21.el6_8.1.s390x.rpm

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    i386: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-python-2.7.6-21.el6_8.1.i686.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-static-2.7.6-21.el6_8.1.i686.rpm

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Client (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Client Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    ppc64: libxml2-2.9.1-6.el7_2.3.ppc.rpm libxml2-2.9.1-6.el7_2.3.ppc64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc64.rpm libxml2-python-2.9.1-6.el7_2.3.ppc64.rpm

    ppc64le: libxml2-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-python-2.9.1-6.el7_2.3.ppc64le.rpm

    s390x: libxml2-2.9.1-6.el7_2.3.s390.rpm libxml2-2.9.1-6.el7_2.3.s390x.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm libxml2-devel-2.9.1-6.el7_2.3.s390.rpm libxml2-devel-2.9.1-6.el7_2.3.s390x.rpm libxml2-python-2.9.1-6.el7_2.3.s390x.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64: libxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm libxml2-static-2.9.1-6.el7_2.3.ppc.rpm libxml2-static-2.9.1-6.el7_2.3.ppc64.rpm

    ppc64le: libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-static-2.9.1-6.el7_2.3.ppc64le.rpm

    s390x: libxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm libxml2-static-2.9.1-6.el7_2.3.s390.rpm libxml2-static-2.9.1-6.el7_2.3.s390x.rpm

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2016-1762 https://access.redhat.com/security/cve/CVE-2016-1833 https://access.redhat.com/security/cve/CVE-2016-1834 https://access.redhat.com/security/cve/CVE-2016-1835 https://access.redhat.com/security/cve/CVE-2016-1836 https://access.redhat.com/security/cve/CVE-2016-1837 https://access.redhat.com/security/cve/CVE-2016-1838 https://access.redhat.com/security/cve/CVE-2016-1839 https://access.redhat.com/security/cve/CVE-2016-1840 https://access.redhat.com/security/cve/CVE-2016-3627 https://access.redhat.com/security/cve/CVE-2016-3705 https://access.redhat.com/security/cve/CVE-2016-4447 https://access.redhat.com/security/cve/CVE-2016-4448 https://access.redhat.com/security/cve/CVE-2016-4449 https://access.redhat.com/security/updates/classification/#important

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFXa8B8XlSAg2UNWIIRAh9ZAJ99xgPhOaIopIxmynm+vlDcmw4jFACeLvTm ZsVLEgJAF0Zt6xZVzqvVW7U= =fREV -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . From: Marc Deslauriers marc.deslauriers@canonical.com Reply-To: Ubuntu Security security@ubuntu.com To: ubuntu-security-announce@lists.ubuntu.com Message-ID: 5755B7E3.5040103@canonical.com Subject: [USN-2994-1] libxml2 vulnerabilities

    ============================================================================ Ubuntu Security Notice USN-2994-1 June 06, 2016

    libxml2 vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 16.04 LTS
    • Ubuntu 15.10
    • Ubuntu 14.04 LTS
    • Ubuntu 12.04 LTS

    Summary:

    Several security issues were fixed in libxml2. (CVE-2015-8806, CVE-2016-2073, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447)

    It was discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1762, CVE-2016-1834)

    Mateusz Jurczyk discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1833, CVE-2016-1838, CVE-2016-1839)

    Wei Lei and Liu Yang discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1835, CVE-2016-1837)

    Wei Lei and Liu Yang discovered that libxml2 incorrectly handled certain malformed documents. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 15.10 and Ubuntu 16.04 LTS. (CVE-2016-1836)

    Kostya Serebryany discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1840)

    It was discovered that libxml2 would load certain XML external entities. (CVE-2016-4449)

    Gustavo Grieco discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-4483)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 16.04 LTS: libxml2 2.9.3+dfsg1-1ubuntu0.1

    Ubuntu 15.10: libxml2 2.9.2+zdfsg1-4ubuntu0.4

    Ubuntu 14.04 LTS: libxml2 2.9.1+dfsg1-3ubuntu4.8

    Ubuntu 12.04 LTS: libxml2 2.7.8.dfsg-5.1ubuntu4.15

    After a standard system update you need to reboot your computer to make all the necessary changes.

    For the stable distribution (jessie), these problems have been fixed in version 2.9.1+dfsg1-5+deb8u2. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512

    APPLE-SA-2016-03-21-1 iOS 9.3

    iOS 9.3 is now available and addresses the following:

    AppleUSBNetworking Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue existed in the parsing of data from USB devices. This issue was addressed through improved input validation. CVE-ID CVE-2016-1734 : Andrea Barisani and Andrej Rosano of Inverse Path

    FontParser Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution Description: A memory corruption issue was addressed through improved memory handling. CVE-ID CVE-2016-1740 : HappilyCoded (ant4g0nist and r3dsm0k3) working with Trend Micro's Zero Day Initiative (ZDI)

    HTTPProtocol Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A remote attacker may be able to execute arbitrary code Description: Multiple vulnerabilities existed in nghttp2 versions prior to 1.6.0, the most serious of which may have led to remote code execution. These were addressed by updating nghttp2 to version 1.6.0. CVE-ID CVE-2015-8659

    IOHIDFamily Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to determine kernel memory layout Description: A memory corruption issue was addressed through improved memory handling. CVE-ID CVE-2016-1748 : Brandon Azad

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to cause a denial of service Description: A denial of service issue was addressed through improved validation. CVE-ID CVE-2016-1752 : CESG

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed through improved memory management. CVE-ID CVE-2016-1750 : CESG

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple integer overflows were addressed through improved input validation. CVE-ID CVE-2016-1753 : Juwei Lin Trend Micro working with Trend Micro's Zero Day Initiative (ZDI)

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to bypass code signing Description: A permissions issue existed in which execute permission was incorrectly granted. This issue was addressed through improved permission validation. CVE-ID CVE-2016-1751 : Eric Monti of Square Mobile Security

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A race condition existed during the creation of new processes. This was addressed through improved state handling. CVE-ID CVE-2016-1757 : Ian Beer of Google Project Zero and Pedro Vilaça

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A null pointer dereference was addressed through improved input validation. CVE-ID CVE-2016-1756 : Lufeng Li of Qihoo 360 Vulcan Team

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1754 : Lufeng Li of Qihoo 360 Vulcan Team CVE-2016-1755 : Ian Beer of Google Project Zero

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to determine kernel memory layout Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed through improved input validation. CVE-ID CVE-2016-1758 : Brandon Azad

    LaunchServices Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to modify events from other applications Description: An event handler validation issue existed in the XPC Services API. This issue was addressed through improved message validation. CVE-ID CVE-2016-1760 : Proteas of Qihoo 360 Nirvan Team

    libxml2 Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing maliciously crafted XML may lead to unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2015-1819 CVE-2015-5312 : David Drysdale of Google CVE-2015-7499 CVE-2015-7500 : Kostya Serebryany of Google CVE-2015-7942 : Kostya Serebryany of Google CVE-2015-8035 : gustavo.grieco CVE-2015-8242 : Hugh Davenport CVE-2016-1761 : wol0xff working with Trend Micro's Zero Day Initiative (ZDI) CVE-2016-1762

    Messages Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a maliciously crafted website may auto-fill text into other Message threads Description: An issue existed in the parsing of SMS URLs. This issue was addressed through improved URL validation. CVE-ID CVE-2016-1763 : CityTog

    Messages Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An attacker who is able to bypass Apple's certificate pinning, intercept TLS connections, inject messages, and record encrypted attachment-type messages may be able to read attachments Description: A cryptographic issue was addressed by rejecting duplicate messages on the client. CVE-ID CVE-2016-1788 : Christina Garman, Matthew Green, Gabriel Kaptchuk, Ian Miers, and Michael Rushanan of Johns Hopkins University

    Profiles Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An untrusted MDM profile may be incorrectly displayed as verified Description: A certificate validation issue existed in MDM profiles. This was addressed through additional checks. CVE-ID CVE-2016-1766 : Taylor Boyko working with Trend Micro's Zero Day Initiative (ZDI)

    Security Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing a maliciously crafted certificate may lead to arbitrary code execution Description: A memory corruption issue existed in the ASN.1 decoder. This issue was addressed through improved input validation. CVE-ID CVE-2016-1950 : Francis Gabriel of Quarkslab

    TrueTypeScaler Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing a maliciously crafted font file may lead to arbitrary code execution Description: A memory corruption issue existed in the processing of font files. This issue was addressed through improved input validation. CVE-ID CVE-2016-1775 : 0x1byte working with Trend Micro's Zero Day Initiative (ZDI)

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1778 : 0x1byte working with Trend Micro's Zero Day Initiative (ZDI) CVE-2016-1783 : Mihai Parparita of Google

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A website may be able to track sensitive user information Description: An issue existed in the handling of attachment URLs. This issue was addressed through improved URL handling. CVE-ID CVE-2016-1781 : Devdatta Akhawe of Dropbox, Inc.

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A website may be able to track sensitive user information Description: A hidden web page may be able to access device- orientation and device-motion data. This issue was addressed by suspending the availability of this data when the web view is hidden. CVE-ID CVE-2016-1780 : Maryam Mehrnezhad, Ehsan Toreini, Siamak F. Shahandashti, and Feng Hao of the School of Computing Science, Newcastle University, UK

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a maliciously crafted website may reveal a user's current location Description: An issue existed in the parsing of geolocation requests. This was addressed through improved validation of the security origin for geolocation requests. CVE-ID CVE-2016-1779 : xisigr of Tencent's Xuanwu Lab (http://www.tencent.com)

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A malicious website may be able to access restricted ports on arbitrary servers Description: A port redirection issue was addressed through additional port validation. CVE-ID CVE-2016-1782 : Muneaki Nishimura (nishimunea) of Recruit Technologies Co.,Ltd.

    WebKit History Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing maliciously crafted web content may lead to an unexpected Safari crash Description: A resource exhaustion issue was addressed through improved input validation. CVE-ID CVE-2016-1784 : Moony Li and Jack Tang of TrendMicro and 李普君 of 无声信息技术PKAV Team (PKAV.net)

    WebKit Page Loading Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a malicious website may lead to user interface spoofing Description: Redirect responses may have allowed a malicious website to display an arbitrary URL and read cached contents of the destination origin. This issue was addressed through improved URL display logic. CVE-ID CVE-2016-1786 : ma.la of LINE Corporation

    WebKit Page Loading Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A malicious website may exfiltrate data cross-origin Description: A caching issue existed with character encoding. This was addressed through additional request checking. CVE-ID CVE-2016-1785 : an anonymous researcher

    Wi-Fi Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An attacker with a privileged network position may be able to execute arbitrary code Description: A frame validation and memory corruption issue existed for a given ethertype. This issue was addressed through additional ethertype validation and improved memory handling. CVE-ID CVE-2016-0801 : an anonymous researcher CVE-2016-0802 : an anonymous researcher

    Installation note:

    This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from www.apple.com/itunes/

    iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device.

    The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device.

    To check that the iPhone, iPod touch, or iPad has been updated:

    • Navigate to Settings
    • Select General
    • Select About. The version after applying this update will be "9.3 ".

    Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org

    iQIcBAEBCgAGBQJW8JPyAAoJEBcWfLTuOo7tWzQP/i8AwdkoE9uvhfe5X5p1yDxr YVcAkvHAgWzNee9Tvc6ERa2KWdOkmbVRGzySyG62lhGnrUTSMtlCs0/Bp/Ui5p65 FF2viREhDJNA83WZcsFP0ELZVJ5VwUv6BJR0L0ERn7QSfaftAwVSFmyHHURA7rGj IRQWnwD6IOblI0veLXjJjN8nPY2ueAzVvyv5mD8c4MdCxwxZNi2X9ugtIBBbZr6Y arjAVh/wfB0m+f50feDaPvo/8mZDn1UwrDu0YPtGDmGebgX17TE39q0YgOFf0uXv HzA0S1+mDURGR3h+7wpyO25+uOPHyGkeIA1GVISA2O7pmHKTcY5pvWC4zyIsDfRC ziI4AIml9ySY7nIltuUWeUdO81nHrjvEtXyWZ6VBH4Dah4yne80B04UGgLIzD1ON hTlTySVnMBJ8+N0g+e3ldGTuf49ISEKh9s6u+ABtBi9+sDSiWxGIkvNuZN37522O dK4MsAZIffxbKo2DuJxiWrfIzhAOO3rZbRD8oFkOtKh5QHlS1eOBlN29U9S1Cq+P jZ/sffscri8q9m8KUx4a+1HG3N6TDIJtIz7/jJyTld2Aw+1JAlU4DG41t1lkEs6S 41wah3j9YrqXCp2uc3JmcI6k2XW2pj73T9Mqqz5e/xk2sfwnJ299dAK7vXkGR3ix Fg29LzTb0eQ9Ub1Mkn5E =Ouex -----END PGP SIGNATURE----- . CVE-ID CVE-2016-1762

    Safari Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, OS X El Capitan v10.11 to v10.11.3 Impact: Visiting a malicious website may lead to user interface spoofing Description: An issue existed where the text of a dialog included page-supplied text. CVE-ID CVE-2016-1786 : ma.la of LINE Corporation

    Installation note:

    Safari 9.1 may be obtained from the Mac App Store. Description:

    This release of Red Hat JBoss Core Services httpd 2.4.23 serves as a replacement for JBoss Core Services Apache HTTP Server 2.4.6.

    Security Fix(es):

    • This update fixes several flaws in OpenSSL. (CVE-2016-1762, CVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483)

    • This update fixes three flaws in curl. (CVE-2016-5419, CVE-2016-5420, CVE-2016-7141)

    • This update fixes two flaws in httpd. (CVE-2016-4459, CVE-2016-8612)

    • A buffer overflow flaw when concatenating virtual host names and URIs was fixed in mod_jk. (CVE-2016-6808)

    • A memory leak flaw was fixed in expat. Upstream acknowledges Stephen Henson (OpenSSL development team) as the original reporter of CVE-2015-0286; Huzaifa Sidhpurwala (Red Hat), Hanno BAPck, and David Benjamin (Google) as the original reporters of CVE-2016-2108; Guido Vranken as the original reporter of CVE-2016-2105, CVE-2016-2106, CVE-2016-0797, CVE-2016-0799, and CVE-2016-2842; Juraj Somorovsky as the original reporter of CVE-2016-2107; Yuval Yarom (University of Adelaide and NICTA), Daniel Genkin (Technion and Tel Aviv University), and Nadia Heninger (University of Pennsylvania) as the original reporters of CVE-2016-0702; and Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.

    See the corresponding CVE pages linked to in the References section for more information about each of the flaws listed in this advisory. Solution:

    The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).

    After installing the updated packages, the httpd daemon will be restarted automatically. JIRA issues fixed (https://issues.jboss.org/):

    JBCS-50 - CVE-2012-1148 CVE-2012-0876 expat: various flaws [jbews-3.0.0] JBCS-95 - CVE-2014-3523 httpd: WinNT MPM denial of service

    6

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "16.04"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.6.2.3"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "libxml2",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "xmlsoft",
            "version": "2.9.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "gt",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.5.2.11"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "15.10"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "10.11.4"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "iphone os",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.5.2.10"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "apple",
            "version": "9.0.3"
          },
          {
            "_id": null,
            "model": "ubuntu",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "canonical",
            "version": "12.04 lts"
          },
          {
            "_id": null,
            "model": "ubuntu",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "canonical",
            "version": "14.04 lts"
          },
          {
            "_id": null,
            "model": "ubuntu",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "canonical",
            "version": "15.10"
          },
          {
            "_id": null,
            "model": "ubuntu",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "canonical",
            "version": "16.04 lts"
          },
          {
            "_id": null,
            "model": "gnu/linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.10.5"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.11 to  10.11.3"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.9.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "9.3   (ipad 2 or later )"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "9.3   (iphone 4s or later )"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "9.3   (ipod touch first  5 after generation )"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "9.2   (apple tv first  4 generation )"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "2.2   (apple watch edition)"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "2.2   (apple watch hermes)"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "2.2   (apple watch sport)"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "apple",
            "version": "2.2   (apple watch)"
          },
          {
            "_id": null,
            "model": "iphone os",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "apple",
            "version": "10.11.3"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.211"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "7"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.0"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.4"
          },
          {
            "_id": null,
            "model": "advanced secure gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.410"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.24"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.219"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.10"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.2"
          },
          {
            "_id": null,
            "model": "junos space 15.1f2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.6"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.22"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.2"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.36"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.4"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.10"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "junos space 15.1r2.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "authconnector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.44"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.1"
          },
          {
            "_id": null,
            "model": "email gateway 7.6.2h968406",
            "scope": null,
            "trust": 0.3,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.46"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.26"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.3"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.405"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.7"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "vm server for",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "x863.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.7"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.42"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "30"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8"
          },
          {
            "_id": null,
            "model": "junos space 15.2r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.4"
          },
          {
            "_id": null,
            "model": "watch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.8"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.31"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.08"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.2.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.4"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.08"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.213"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "watch hermes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.22"
          },
          {
            "_id": null,
            "model": "industrial control system protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.404"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.413"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fixpac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.3"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.401"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.8"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.34"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "email gateway 7.6.405h1165239",
            "scope": null,
            "trust": 0.3,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "50"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.32"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.11"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.52"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.3"
          },
          {
            "_id": null,
            "model": "norman network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.34"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.31"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "13.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.0"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.3.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.412"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "junos space 15.2r2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.21"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.2.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.33"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.8"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry jre update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.35"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.30"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.33"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.10"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.31"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.218"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.10"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.411"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.8"
          },
          {
            "_id": null,
            "model": "junos space 14.1r1.9",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.214"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.19"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fixpac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.403"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.113"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.11"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.110"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "junos space 16.1r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.110"
          },
          {
            "_id": null,
            "model": "proxysg",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "mq appliance m2001",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.21"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.5"
          },
          {
            "_id": null,
            "model": "mac os security update",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x2016-0020"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.6"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "safari beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "mq appliance m2000",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.4"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.415"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.3.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1.1"
          },
          {
            "_id": null,
            "model": "watch sport",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.6"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.09"
          },
          {
            "_id": null,
            "model": "watch edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.4"
          },
          {
            "_id": null,
            "model": "ipad",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "20"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.3.1"
          },
          {
            "_id": null,
            "model": "security identity governance and intelligence",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.12"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.01"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.8"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.09"
          },
          {
            "_id": null,
            "model": "vm server for",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "x863.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry jre update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.34"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "junos space 14.1r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.3"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "40"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.010"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.4"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.2"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry jre update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.55"
          },
          {
            "_id": null,
            "model": "director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.5"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.2.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.4.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.9"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.9"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.1"
          },
          {
            "_id": null,
            "model": "industrial control systems network scanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.8"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.55"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.400"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.415"
          },
          {
            "_id": null,
            "model": "proxysg",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.4419.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.28"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.9"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.3"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.2.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.406-3402.103"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "email gateway 7.6.405h1157986",
            "scope": null,
            "trust": 0.3,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.4"
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "libxml2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xmlsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "safari",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.402"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "85059"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:canonical:ubuntu",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:debian:debian_linux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:iphone_os",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:apple_tv",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:apple:watchos",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Apple",
        "sources": [
          {
            "db": "BID",
            "id": "85059"
          },
          {
            "db": "PACKETSTORM",
            "id": "136344"
          },
          {
            "db": "PACKETSTORM",
            "id": "136342"
          },
          {
            "db": "PACKETSTORM",
            "id": "136347"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2016-1762",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2016-1762",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
                "version": "2.0"
              },
              {
                "acInsufInfo": null,
                "accessComplexity": "Low",
                "accessVector": "Network",
                "authentication": "None",
                "author": "NVD",
                "availabilityImpact": "Complete",
                "baseScore": 10.0,
                "confidentialityImpact": "Complete",
                "exploitabilityScore": null,
                "id": "CVE-2016-1762",
                "impactScore": null,
                "integrityImpact": "Complete",
                "obtainAllPrivilege": null,
                "obtainOtherPrivilege": null,
                "obtainUserPrivilege": null,
                "severity": "High",
                "trust": 0.8,
                "userInteractionRequired": null,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-90581",
                "impactScore": 4.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 2.8,
                "id": "CVE-2016-1762",
                "impactScore": 5.2,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
                "version": "3.0"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 2.8,
                "id": "CVE-2016-1762",
                "impactScore": 5.2,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-1762",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "id": "CVE-2016-1762",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2016-1762",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201603-315",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-90581",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2016-1762",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90581"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1762"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document. libxml2 is prone to multiple memory-corruption vulnerabilities. \nA remote attacker can leverage these issues to execute arbitrary code  in  the context of the user running the application.  Failed  exploit  attempts may result in a denial-of-service condition. Apple iOS, OS X, Safari, tvOS and watchOS are all products of Apple Inc. in the United States. Apple iOS is a set of operating systems developed for mobile devices; Apple OS X is a set of dedicated operating systems developed for Mac computers; and the default browser that comes with the iOS operating system; tvOS is a smart TV operating system; watchOS is a smart watch operating system. A security vulnerability exists in libxml2 of several Apple products. The following products and versions are affected: Apple iOS versions prior to 9.3, OS X versions prior to 10.11.4, Safari versions prior to 9.1, tvOS versions prior to 9.2, and watchOS versions prior to 2.2. Summary:\n\nAn update for libxml2 is now available for Red Hat Enterprise Linux 6 and\nRed Hat Enterprise Linux 7. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. Description:\n\nThe libxml2 library is a development toolbox providing the implementation\nof various XML standards. \n(CVE-2016-1762, CVE-2016-1833, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837,\nCVE-2016-1838, CVE-2016-1839, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447,\nCVE-2016-4448, CVE-2016-4449)\n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all applications linked to the libxml2\nlibrary must be restarted, or the system rebooted. \n\n5. Package List:\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\ni386:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-python-2.7.6-21.el6_8.1.i686.rpm\n\nppc64:\nlibxml2-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.ppc64.rpm\n\ns390x:\nlibxml2-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-python-2.7.6-21.el6_8.1.s390x.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-static-2.7.6-21.el6_8.1.i686.rpm\n\nppc64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.ppc64.rpm\n\ns390x:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-static-2.7.6-21.el6_8.1.s390x.rpm\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\ni386:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-python-2.7.6-21.el6_8.1.i686.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-static-2.7.6-21.el6_8.1.i686.rpm\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nppc64:\nlibxml2-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.ppc64.rpm\n\nppc64le:\nlibxml2-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-python-2.9.1-6.el7_2.3.ppc64le.rpm\n\ns390x:\nlibxml2-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-python-2.9.1-6.el7_2.3.s390x.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc64.rpm\n\nppc64le:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc64le.rpm\n\ns390x:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-static-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-static-2.9.1-6.el7_2.3.s390x.rpm\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2016-1762\nhttps://access.redhat.com/security/cve/CVE-2016-1833\nhttps://access.redhat.com/security/cve/CVE-2016-1834\nhttps://access.redhat.com/security/cve/CVE-2016-1835\nhttps://access.redhat.com/security/cve/CVE-2016-1836\nhttps://access.redhat.com/security/cve/CVE-2016-1837\nhttps://access.redhat.com/security/cve/CVE-2016-1838\nhttps://access.redhat.com/security/cve/CVE-2016-1839\nhttps://access.redhat.com/security/cve/CVE-2016-1840\nhttps://access.redhat.com/security/cve/CVE-2016-3627\nhttps://access.redhat.com/security/cve/CVE-2016-3705\nhttps://access.redhat.com/security/cve/CVE-2016-4447\nhttps://access.redhat.com/security/cve/CVE-2016-4448\nhttps://access.redhat.com/security/cve/CVE-2016-4449\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2016 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFXa8B8XlSAg2UNWIIRAh9ZAJ99xgPhOaIopIxmynm+vlDcmw4jFACeLvTm\nZsVLEgJAF0Zt6xZVzqvVW7U=\n=fREV\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. From: Marc Deslauriers \u003cmarc.deslauriers@canonical.com\u003e\nReply-To: Ubuntu Security \u003csecurity@ubuntu.com\u003e\nTo: ubuntu-security-announce@lists.ubuntu.com\nMessage-ID: \u003c5755B7E3.5040103@canonical.com\u003e\nSubject: [USN-2994-1] libxml2 vulnerabilities\n\n\n\n\n============================================================================\nUbuntu Security Notice USN-2994-1\nJune 06, 2016\n\nlibxml2 vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 16.04 LTS\n- Ubuntu 15.10\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in libxml2. (CVE-2015-8806, CVE-2016-2073,\nCVE-2016-3627, CVE-2016-3705, CVE-2016-4447)\n\nIt was discovered that libxml2 incorrectly handled certain malformed\ndocuments. \n(CVE-2016-1762, CVE-2016-1834)\n\nMateusz Jurczyk discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-1833, CVE-2016-1838, CVE-2016-1839)\n\nWei Lei and Liu Yang discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-1835, CVE-2016-1837)\n\nWei Lei and Liu Yang discovered that libxml2 incorrectly handled certain\nmalformed documents. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 15.10 and\nUbuntu 16.04 LTS. (CVE-2016-1836)\n\nKostya Serebryany discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-1840)\n\nIt was discovered that libxml2 would load certain XML external entities. (CVE-2016-4449)\n\nGustavo Grieco discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-4483)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 16.04 LTS:\n  libxml2                         2.9.3+dfsg1-1ubuntu0.1\n\nUbuntu 15.10:\n  libxml2                         2.9.2+zdfsg1-4ubuntu0.4\n\nUbuntu 14.04 LTS:\n  libxml2                         2.9.1+dfsg1-3ubuntu4.8\n\nUbuntu 12.04 LTS:\n  libxml2                         2.7.8.dfsg-5.1ubuntu4.15\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes. \n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 2.9.1+dfsg1-5+deb8u2. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\nAPPLE-SA-2016-03-21-1 iOS 9.3\n\niOS 9.3 is now available and addresses the following:\n\nAppleUSBNetworking\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue existed in the parsing of\ndata from USB devices. This issue was addressed through improved\ninput validation. \nCVE-ID\nCVE-2016-1734 : Andrea Barisani and Andrej Rosano of Inverse Path\n\nFontParser\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Opening a maliciously crafted PDF file may lead to an\nunexpected application termination or arbitrary code execution\nDescription:  A memory corruption issue was addressed through\nimproved memory handling. \nCVE-ID\nCVE-2016-1740 : HappilyCoded (ant4g0nist and r3dsm0k3) working with\nTrend Micro\u0027s Zero Day Initiative (ZDI)\n\nHTTPProtocol\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A remote attacker may be able to execute arbitrary code\nDescription:  Multiple vulnerabilities existed in nghttp2 versions\nprior to 1.6.0, the most serious of which may have led to remote code\nexecution. These were addressed by updating nghttp2 to version 1.6.0. \nCVE-ID\nCVE-2015-8659\n\nIOHIDFamily\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to determine kernel memory layout\nDescription:  A memory corruption issue was addressed through\nimproved memory handling. \nCVE-ID\nCVE-2016-1748 : Brandon Azad\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to cause a denial of service\nDescription:  A denial of service issue was addressed through\nimproved validation. \nCVE-ID\nCVE-2016-1752 : CESG\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A use after free issue was addressed through improved\nmemory management. \nCVE-ID\nCVE-2016-1750 : CESG\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple integer overflows were addressed through\nimproved input validation. \nCVE-ID\nCVE-2016-1753 : Juwei Lin Trend Micro working with Trend Micro\u0027s Zero\nDay Initiative (ZDI)\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to bypass code signing\nDescription:  A permissions issue existed in which execute permission\nwas incorrectly granted. This issue was addressed through improved\npermission validation. \nCVE-ID\nCVE-2016-1751 : Eric Monti of Square Mobile Security\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A race condition existed during the creation of new\nprocesses. This was addressed through improved state handling. \nCVE-ID\nCVE-2016-1757 : Ian Beer of Google Project Zero and Pedro Vila\u00e7a\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A null pointer dereference was addressed through\nimproved input validation. \nCVE-ID\nCVE-2016-1756 : Lufeng Li of Qihoo 360 Vulcan Team\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1754 : Lufeng Li of Qihoo 360 Vulcan Team\nCVE-2016-1755 : Ian Beer of Google Project Zero\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to determine kernel memory layout\nDescription:  An out-of-bounds read issue existed that led to the\ndisclosure of kernel memory. This was addressed through improved\ninput validation. \nCVE-ID\nCVE-2016-1758 : Brandon Azad\n\nLaunchServices\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to modify events from other\napplications\nDescription:  An event handler validation issue existed in the XPC\nServices API. This issue was addressed through improved message\nvalidation. \nCVE-ID\nCVE-2016-1760 : Proteas of Qihoo 360 Nirvan Team\n\nlibxml2\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing maliciously crafted XML may lead to unexpected\napplication termination or arbitrary code execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2015-1819\nCVE-2015-5312 : David Drysdale of Google\nCVE-2015-7499\nCVE-2015-7500 : Kostya Serebryany of Google\nCVE-2015-7942 : Kostya Serebryany of Google\nCVE-2015-8035 : gustavo.grieco\nCVE-2015-8242 : Hugh Davenport\nCVE-2016-1761 : wol0xff working with Trend Micro\u0027s Zero Day\nInitiative (ZDI)\nCVE-2016-1762\n\nMessages\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a maliciously crafted website may auto-fill text\ninto other Message threads\nDescription:  An issue existed in the parsing of SMS URLs. This issue\nwas addressed through improved URL validation. \nCVE-ID\nCVE-2016-1763 : CityTog\n\nMessages\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An attacker who is able to bypass Apple\u0027s certificate\npinning, intercept TLS connections, inject messages, and record\nencrypted attachment-type messages may be able to read attachments\nDescription:  A cryptographic issue was addressed by rejecting\nduplicate messages on the client. \nCVE-ID\nCVE-2016-1788 : Christina Garman, Matthew Green, Gabriel Kaptchuk,\nIan Miers, and Michael Rushanan of Johns Hopkins University\n\nProfiles\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An untrusted MDM profile may be incorrectly displayed as\nverified\nDescription:  A certificate validation issue existed in MDM profiles. \nThis was addressed through additional checks. \nCVE-ID\nCVE-2016-1766 : Taylor Boyko working with Trend Micro\u0027s Zero Day\nInitiative (ZDI)\n\nSecurity\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing a maliciously crafted certificate may lead to\narbitrary code execution\nDescription:  A memory corruption issue existed in the ASN.1 decoder. \nThis issue was addressed through improved input validation. \nCVE-ID\nCVE-2016-1950 : Francis Gabriel of Quarkslab\n\nTrueTypeScaler\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing a maliciously crafted font file may lead to\narbitrary code execution\nDescription:  A memory corruption issue existed in the processing of\nfont files. This issue was addressed through improved input\nvalidation. \nCVE-ID\nCVE-2016-1775 : 0x1byte working with Trend Micro\u0027s Zero Day\nInitiative (ZDI)\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing maliciously crafted web content may lead to\narbitrary code execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1778 : 0x1byte working with Trend Micro\u0027s Zero Day\nInitiative (ZDI)\nCVE-2016-1783 : Mihai Parparita of Google\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A website may be able to track sensitive user information\nDescription:  An issue existed in the handling of attachment URLs. \nThis issue was addressed through improved URL handling. \nCVE-ID\nCVE-2016-1781 : Devdatta Akhawe of Dropbox, Inc. \n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A website may be able to track sensitive user information\nDescription:  A hidden web page may be able to access device-\norientation and device-motion data. This issue was addressed by\nsuspending the availability of this data when the web view is hidden. \nCVE-ID\nCVE-2016-1780 : Maryam Mehrnezhad, Ehsan Toreini, Siamak F. \nShahandashti, and Feng Hao of the School of Computing Science,\nNewcastle University, UK\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a maliciously crafted website may reveal a user\u0027s\ncurrent location\nDescription:  An issue existed in the parsing of geolocation\nrequests. This was addressed through improved validation of the\nsecurity origin for geolocation requests. \nCVE-ID\nCVE-2016-1779 : xisigr of Tencent\u0027s Xuanwu Lab\n(http://www.tencent.com)\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A malicious website may be able to access restricted ports\non arbitrary servers\nDescription:  A port redirection issue was addressed through\nadditional port validation. \nCVE-ID\nCVE-2016-1782 : Muneaki Nishimura (nishimunea) of Recruit\nTechnologies Co.,Ltd. \n\nWebKit History\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing maliciously crafted web content may lead to an\nunexpected Safari crash\nDescription:  A resource exhaustion issue was addressed through\nimproved input validation. \nCVE-ID\nCVE-2016-1784 : Moony Li and Jack Tang of TrendMicro and \u674e\u666e\u541b of\n\u65e0\u58f0\u4fe1\u606f\u6280\u672fPKAV Team (PKAV.net)\n\nWebKit Page Loading\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a malicious website may lead to user interface\nspoofing\nDescription:  Redirect responses may have allowed a malicious website\nto display an arbitrary URL and read cached contents of the\ndestination origin. This issue was addressed through improved URL\ndisplay logic. \nCVE-ID\nCVE-2016-1786 : ma.la of LINE Corporation\n\nWebKit Page Loading\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A malicious website may exfiltrate data cross-origin\nDescription:  A caching issue existed with character encoding. This\nwas addressed through additional request checking. \nCVE-ID\nCVE-2016-1785 : an anonymous researcher\n\nWi-Fi\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An attacker with a privileged network position may be able\nto execute arbitrary code\nDescription:  A frame validation and memory corruption issue existed\nfor a given ethertype. This issue was addressed through additional\nethertype validation and improved memory handling. \nCVE-ID\nCVE-2016-0801 : an anonymous researcher\nCVE-2016-0802 : an anonymous researcher\n\nInstallation note:\n\nThis update is available through iTunes and Software Update on your\niOS device, and will not appear in your computer\u0027s Software Update\napplication, or in the Apple Downloads site. Make sure you have an\nInternet connection and have installed the latest version of iTunes\nfrom www.apple.com/itunes/\n\niTunes and Software Update on the device will automatically check\nApple\u0027s update server on its weekly schedule. When an update is\ndetected, it is downloaded and the option to be installed is\npresented to the user when the iOS device is docked. We recommend\napplying the update immediately if possible. Selecting Don\u0027t Install\nwill present the option the next time you connect your iOS device. \n\nThe automatic update process may take up to a week depending on the\nday that iTunes or the device checks for updates. You may manually\nobtain the update via the Check for Updates button within iTunes, or\nthe Software Update on your device. \n\nTo check that the iPhone, iPod touch, or iPad has been updated:\n\n* Navigate to Settings\n* Select General\n* Select About. The version after applying this update\nwill be \"9.3 \". \n\nInformation will also be posted to the Apple Security Updates\nweb site: https://support.apple.com/kb/HT201222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n-----BEGIN PGP SIGNATURE-----\nComment: GPGTools - https://gpgtools.org\n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\nFg29LzTb0eQ9Ub1Mkn5E\n=Ouex\n-----END PGP SIGNATURE-----\n. \nCVE-ID\nCVE-2016-1762\n\nSafari\nAvailable for:  OS X Mavericks v10.9.5, OS X Yosemite v10.10.5,\nOS X El Capitan v10.11 to v10.11.3\nImpact:  Visiting a malicious website may lead to user interface\nspoofing\nDescription:  An issue existed where the text of a dialog included\npage-supplied text. \nCVE-ID\nCVE-2016-1786 : ma.la of LINE Corporation\n\nInstallation note:\n\nSafari 9.1 may be obtained from the Mac App Store. Description:\n\nThis release of Red Hat JBoss Core Services httpd 2.4.23 serves as a\nreplacement for JBoss Core Services Apache HTTP Server 2.4.6. \n\nSecurity Fix(es):\n\n* This update fixes several flaws in OpenSSL. (CVE-2016-1762,\nCVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837,\nCVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705,\nCVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483)\n\n* This update fixes three flaws in curl. (CVE-2016-5419, CVE-2016-5420,\nCVE-2016-7141)\n\n* This update fixes two flaws in httpd. (CVE-2016-4459,\nCVE-2016-8612)\n\n* A buffer overflow flaw when concatenating virtual host names and URIs was\nfixed in mod_jk. (CVE-2016-6808)\n\n* A memory leak flaw was fixed in expat. Upstream acknowledges Stephen Henson (OpenSSL development team)\nas the original reporter of CVE-2015-0286; Huzaifa Sidhpurwala (Red Hat),\nHanno BAPck, and David Benjamin (Google) as the original reporters of\nCVE-2016-2108; Guido Vranken as the original reporter of CVE-2016-2105,\nCVE-2016-2106, CVE-2016-0797, CVE-2016-0799, and CVE-2016-2842; Juraj\nSomorovsky as the original reporter of CVE-2016-2107; Yuval Yarom\n(University of Adelaide and NICTA), Daniel Genkin (Technion and Tel Aviv\nUniversity), and Nadia Heninger (University of Pennsylvania) as the\noriginal reporters of CVE-2016-0702; and Adam Langley (Google/BoringSSL) as\nthe original reporter of CVE-2016-0705. \n\nSee the corresponding CVE pages linked to in the References section for\nmore information about each of the flaws listed in this advisory. Solution:\n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting Red Hat JBoss Web Server installation (including all applications\nand configuration files). \n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically. JIRA issues fixed (https://issues.jboss.org/):\n\nJBCS-50 - CVE-2012-1148 CVE-2012-0876 expat: various flaws [jbews-3.0.0]\nJBCS-95 - CVE-2014-3523 httpd: WinNT MPM denial of service\n\n6",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          },
          {
            "db": "BID",
            "id": "85059"
          },
          {
            "db": "VULHUB",
            "id": "VHN-90581"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1762"
          },
          {
            "db": "PACKETSTORM",
            "id": "136344"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137335"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "136342"
          },
          {
            "db": "PACKETSTORM",
            "id": "136347"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-1762",
            "trust": 3.6
          },
          {
            "db": "BID",
            "id": "85059",
            "trust": 2.1
          },
          {
            "db": "MCAFEE",
            "id": "SB10170",
            "trust": 2.1
          },
          {
            "db": "SECTRACK",
            "id": "1035353",
            "trust": 1.8
          },
          {
            "db": "JVN",
            "id": "JVNVU97668313",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.3732",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2020.2340",
            "trust": 0.6
          },
          {
            "db": "JUNIPER",
            "id": "JSA10770",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "137613",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-90581",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1762",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "136344",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137335",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137298",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "136342",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "136347",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "140182",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90581"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1762"
          },
          {
            "db": "BID",
            "id": "85059"
          },
          {
            "db": "PACKETSTORM",
            "id": "136344"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137335"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "136342"
          },
          {
            "db": "PACKETSTORM",
            "id": "136347"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          }
        ]
      },
      "id": "VAR-201603-0222",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90581"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:16:40.712000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Apple security updates",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT201222"
          },
          {
            "title": "APPLE-SA-2016-03-21-5 OS X El Capitan 10.11.4 and Security Update 2016-002",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html"
          },
          {
            "title": "APPLE-SA-2016-03-21-2 watchOS 2.2",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html"
          },
          {
            "title": "APPLE-SA-2016-03-21-3 tvOS 9.2",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html"
          },
          {
            "title": "APPLE-SA-2016-03-21-1 iOS 9.3",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html"
          },
          {
            "title": "HT206167",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT206167"
          },
          {
            "title": "HT206168",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT206168"
          },
          {
            "title": "HT206169",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT206169"
          },
          {
            "title": "HT206166",
            "trust": 0.8,
            "url": "https://support.apple.com/en-us/HT206166"
          },
          {
            "title": "HT206166",
            "trust": 0.8,
            "url": "https://support.apple.com/ja-jp/HT206166"
          },
          {
            "title": "HT206167",
            "trust": 0.8,
            "url": "https://support.apple.com/ja-jp/HT206167"
          },
          {
            "title": "HT206168",
            "trust": 0.8,
            "url": "https://support.apple.com/ja-jp/HT206168"
          },
          {
            "title": "HT206169",
            "trust": 0.8,
            "url": "https://support.apple.com/ja-jp/HT206169"
          },
          {
            "title": "DSA-3593",
            "trust": 0.8,
            "url": "https://www.debian.org/security/2016/dsa-3593"
          },
          {
            "title": "Bug 759671",
            "trust": 0.8,
            "url": "https://bugzilla.gnome.org/show_bug.cgi?id=759671"
          },
          {
            "title": "Heap-based buffer overread in xmlNextChar",
            "trust": 0.8,
            "url": "https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602"
          },
          {
            "title": "Oracle Linux Bulletin - July 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
          },
          {
            "title": "Oracle VM Server for x86 Bulletin - July 2016",
            "trust": 0.8,
            "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
          },
          {
            "title": "RHSA-2016:1292",
            "trust": 0.8,
            "url": "https://access.redhat.com/errata/RHSA-2016:1292"
          },
          {
            "title": "TLSA-2016-22",
            "trust": 0.8,
            "url": "http://www.turbolinux.co.jp/security/2016/TLSA-2016-22j.html"
          },
          {
            "title": "USN-2994-1",
            "trust": 0.8,
            "url": "http://www.ubuntu.com/usn/USN-2994-1"
          },
          {
            "title": "2.9.4: May 23 2016",
            "trust": 0.8,
            "url": "http://xmlsoft.org/news.html"
          },
          {
            "title": "Multiple Apple product libxml2 Buffer Overflow Vulnerability Fix",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=60641"
          },
          {
            "title": "Red Hat: CVE-2016-1762",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2016-1762"
          },
          {
            "title": "Apple: tvOS 9.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=ce338ecd7a3c82e55bcf20e44e532eea"
          },
          {
            "title": "Apple: watchOS 2.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=0cbe3084baf2e465ecd2cc68ad686a9a"
          },
          {
            "title": "Ubuntu Security Notice: libxml2 vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2994-1"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-2073: out-of-bounds read in htmlParseNameComplex()",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=e21c0505f8306f0416606e1a2ec5e18e"
          },
          {
            "title": "Red Hat: Important: Red Hat JBoss Core Services Apache HTTP 2.4.23 Release",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20162957 - Security Advisory"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-3705: stack overflow before detecting invalid XML file",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=ed475d816a8279c18b15a9aac8146ada"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: Heap-buffer overread in libxml2/dict.c",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1b5e8a6bfa7b3b48920376b728b6bbe2"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-3627: stack exhaustion in libxml2 parsing xml files in recover mode",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=7ad6e7048d3904deff82dbbe81adf528"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-4483",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=17d0780fd9f0deb51d01d88ca9e90fe3"
          },
          {
            "title": "Apple: iOS 9.3",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=3ae8bd7fcbbf51e9c7fe356687ecd0cf"
          },
          {
            "title": "Apple: OS X El Capitan v10.11.4 and Security Update 2016-002",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=ef054ba76412200e34091eb91c38c281"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2016-719",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2016-719"
          },
          {
            "title": "Oracle Solaris Third Party Bulletins: Oracle Solaris Third Party Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_solaris_third_party_bulletins\u0026qid=ac5af5dd99788925425f5747ec672707"
          },
          {
            "title": "Symantec Security Advisories: SA129 : Multiple libxml2 Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=4306b2beef409e7d3306d20a4621babf"
          },
          {
            "title": "Oracle VM Server for x86 Bulletins: Oracle VM Server for x86 Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_vm_server_for_x86_bulletins\u0026qid=6c15273f6bf4a785175f27073b98a1ce"
          },
          {
            "title": "Oracle Linux Bulletins: Oracle Linux Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_linux_bulletins\u0026qid=0bd8c924b56aac98dda0f5b45f425f38"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2016-1762"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.9
          },
          {
            "problemtype": "CWE-122",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90581"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.1,
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
          },
          {
            "trust": 2.1,
            "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
          },
          {
            "trust": 2.0,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10170"
          },
          {
            "trust": 1.9,
            "url": "https://access.redhat.com/errata/rhsa-2016:1292"
          },
          {
            "trust": 1.9,
            "url": "http://rhn.redhat.com/errata/rhsa-2016-2957.html"
          },
          {
            "trust": 1.9,
            "url": "http://www.ubuntu.com/usn/usn-2994-1"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/mar/msg00000.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/mar/msg00001.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/mar/msg00002.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/mar/msg00004.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/mar/msg00005.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.securityfocus.com/bid/85059"
          },
          {
            "trust": 1.8,
            "url": "http://xmlsoft.org/news.html"
          },
          {
            "trust": 1.8,
            "url": "https://bugzilla.gnome.org/show_bug.cgi?id=759671"
          },
          {
            "trust": 1.8,
            "url": "https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206166"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206167"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206168"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206169"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206171"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2016/dsa-3593"
          },
          {
            "trust": 1.8,
            "url": "http://www.securitytracker.com/id/1035353"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-1762"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/vu/jvnvu97668313/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-1762"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1762"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2020.2340/"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.3732"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1836"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1837"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1839"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1838"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1833"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1834"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1835"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1840"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2016-1762"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/ios/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/safari/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/accessibility/tvos/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/watchos-2/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/macosx/"
          },
          {
            "trust": 0.3,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10770\u0026actp=rss"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1024088"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1024194"
          },
          {
            "trust": 0.3,
            "url": "https://kc.mcafee.com/resources/sites/mcafee/content/live/product_documentation/27000/pd27128/en_us/meg_7_6_406_3402_103_release_notes_en_us.pdf"
          },
          {
            "trust": 0.3,
            "url": "https://bto.bluecoat.com/security-advisory/sa129"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21986974"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989043"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21990750"
          },
          {
            "trust": 0.3,
            "url": "https://gpgtools.org"
          },
          {
            "trust": 0.3,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4449"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-3705"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4447"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-3627"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1751"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1755"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8659"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8035"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1753"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1750"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1819"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7499"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0801"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8242"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5312"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1784"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7942"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7500"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1740"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1752"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1775"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1754"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1783"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0802"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1748"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1838"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1837"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1834"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4448"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1839"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1833"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1840"
          },
          {
            "trust": 0.2,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1836"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1835"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4449"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4447"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-3705"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-3627"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4483"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8806"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2073"
          },
          {
            "trust": 0.2,
            "url": "https://support.apple.com/kb/ht201222"
          },
          {
            "trust": 0.2,
            "url": "http://www.tencent.com)"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10170"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/119.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2994-1/"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht1222"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1950"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4448"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.9.2+zdfsg1-4ubuntu0.4"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.9.3+dfsg1-1ubuntu0.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.9.1+dfsg1-3ubuntu4.8"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.7.8.dfsg-5.1ubuntu4.15"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/itunes/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1756"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1757"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1760"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1766"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1761"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1758"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1734"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1763"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1771"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1781"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1782"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1772"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1779"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1786"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1778"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1785"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2197"
          },
          {
            "trust": 0.1,
            "url": "https://issues.jboss.org/):"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2106"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2106"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0702"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0797"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-6808"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en/red-hat-jboss-core-services-apache-http-server/version-2.4.23/apache-http-server-2423-release-notes/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0799"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2177"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-4483"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2842"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-8612"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1148"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0797"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3185"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2109"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3185"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?product=core.service.apachehttp\u0026downloadtype=distributions\u0026version=2.4.23"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2105"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-5420"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2178"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2108"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2012-1148"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2109"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3195"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-5419"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-4459"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2108"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3195"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0702"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2105"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-7141"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0799"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90581"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1762"
          },
          {
            "db": "BID",
            "id": "85059"
          },
          {
            "db": "PACKETSTORM",
            "id": "136344"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137335"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "136342"
          },
          {
            "db": "PACKETSTORM",
            "id": "136347"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-90581",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1762",
            "ident": null
          },
          {
            "db": "BID",
            "id": "85059",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "136344",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137613",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137335",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137298",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "136342",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "136347",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "140182",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1762",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-03-24T00:00:00",
            "db": "VULHUB",
            "id": "VHN-90581",
            "ident": null
          },
          {
            "date": "2016-03-24T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-1762",
            "ident": null
          },
          {
            "date": "2016-03-21T00:00:00",
            "db": "BID",
            "id": "85059",
            "ident": null
          },
          {
            "date": "2016-03-22T15:12:44",
            "db": "PACKETSTORM",
            "id": "136344",
            "ident": null
          },
          {
            "date": "2016-06-23T13:00:52",
            "db": "PACKETSTORM",
            "id": "137613",
            "ident": null
          },
          {
            "date": "2016-06-07T07:41:54",
            "db": "PACKETSTORM",
            "id": "137335",
            "ident": null
          },
          {
            "date": "2016-06-02T16:29:00",
            "db": "PACKETSTORM",
            "id": "137298",
            "ident": null
          },
          {
            "date": "2016-03-22T15:05:15",
            "db": "PACKETSTORM",
            "id": "136342",
            "ident": null
          },
          {
            "date": "2016-03-22T15:20:32",
            "db": "PACKETSTORM",
            "id": "136347",
            "ident": null
          },
          {
            "date": "2016-12-16T16:34:49",
            "db": "PACKETSTORM",
            "id": "140182",
            "ident": null
          },
          {
            "date": "2016-03-23T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201603-315",
            "ident": null
          },
          {
            "date": "2016-03-25T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-001858",
            "ident": null
          },
          {
            "date": "2016-03-24T01:59:30.827000",
            "db": "NVD",
            "id": "CVE-2016-1762",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2019-03-26T00:00:00",
            "db": "VULHUB",
            "id": "VHN-90581",
            "ident": null
          },
          {
            "date": "2019-03-26T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-1762",
            "ident": null
          },
          {
            "date": "2017-12-19T22:37:00",
            "db": "BID",
            "id": "85059",
            "ident": null
          },
          {
            "date": "2023-06-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201603-315",
            "ident": null
          },
          {
            "date": "2016-11-14T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2016-001858",
            "ident": null
          },
          {
            "date": "2025-12-17T22:15:52.827000",
            "db": "NVD",
            "id": "CVE-2016-1762",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          }
        ],
        "trust": 0.8
      },
      "title": {
        "_id": null,
        "data": "libxml2 of  xmlNextChar Service disruption in functions  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2016-001858"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201603-315"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200609-1424

    Vulnerability from variot - Updated: 2026-04-10 23:16

    The Installer application in Apple Mac OS X 10.4.8 and earlier, when used by a user with Admin credentials, does not authenticate the user before installing certain software requiring system privileges. A flaw in the OpenSSL library could allow a remote attacker to cause a denial of service on an affected application. Multiple RSA implementations fail to properly handle RSA signatures. This vulnerability may allow an attacker to forge RSA signatures. Apple Mac OS X is prone to multiple security vulnerabilities. Attackers may exploit these issues to execute arbitrary code, trigger denial-of-service conditions, escalate privileges, overwrite files, and access potentially sensitive information. Both local and remote vulnerabilities are present. Apple Mac OS X 10.4.8 and prior versions are vulnerable to these issues

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "openpkg",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "rpath",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lte",
            "trust": 1.8,
            "vendor": "apple",
            "version": "10.4.8"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "trustix secure linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "appgate network security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "attachmatewrq",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gnutls",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "iaik java group",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "internet consortium",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "intoto",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mozilla",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openwall gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "opera",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "rsa security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ssh security corp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sybase",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vmware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vandyke",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "apple",
            "version": "10.4.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.9"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.9"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.3"
          },
          {
            "_id": null,
            "model": "directory pro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cosmicperl",
            "version": "10.0.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.7"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.03"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4404"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Benjamin WilliamsMu SecurityEric CroninDr. Stephen N. HensonTim\u203b darksock@uhagr.org",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-4404",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2006-4404",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "VHN-20512",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2006-4404",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#386964",
                "trust": 0.8,
                "value": "0.32"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#845620",
                "trust": 0.8,
                "value": "7.56"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#547300",
                "trust": 0.8,
                "value": "2.53"
              },
              {
                "author": "NVD",
                "id": "CVE-2006-4404",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200611-481",
                "trust": 0.6,
                "value": "CRITICAL"
              },
              {
                "author": "VULHUB",
                "id": "VHN-20512",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20512"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4404"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The Installer application in Apple Mac OS X 10.4.8 and earlier, when used by a user with Admin credentials, does not authenticate the user before installing certain software requiring system privileges. A flaw in the OpenSSL library could allow a remote attacker to cause a denial of service on an affected application. Multiple RSA implementations fail to properly handle RSA signatures. This vulnerability may allow an attacker to forge RSA signatures. Apple Mac OS X is prone to multiple security vulnerabilities. Attackers may exploit these issues to execute arbitrary code, trigger denial-of-service conditions, escalate privileges, overwrite files, and access potentially sensitive information. Both local and remote vulnerabilities are present. \nApple Mac OS X 10.4.8 and prior versions are vulnerable to these issues",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-4404"
          },
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20512"
          }
        ],
        "trust": 4.14
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2006-4404",
            "trust": 2.8
          },
          {
            "db": "USCERT",
            "id": "TA06-333A",
            "trust": 2.8
          },
          {
            "db": "BID",
            "id": "22083",
            "trust": 2.4
          },
          {
            "db": "BID",
            "id": "21335",
            "trust": 2.0
          },
          {
            "db": "OSVDB",
            "id": "30733",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "23155",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-4750",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1017304",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "23280",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "23309",
            "trust": 1.6
          },
          {
            "db": "BID",
            "id": "20246",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#386964",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "21709",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22207",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22212",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22116",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22216",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22220",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22330",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22130",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22240",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22259",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22260",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22165",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22166",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22172",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22284",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22186",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22193",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22094",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "20249",
            "trust": 0.8
          },
          {
            "db": "SECTRACK",
            "id": "1016943",
            "trust": 0.8
          },
          {
            "db": "XF",
            "id": "29237",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481",
            "trust": 0.7
          },
          {
            "db": "CERT/CC",
            "id": "TA06-333A",
            "trust": 0.6
          },
          {
            "db": "APPLE",
            "id": "APPLE-SA-2006-11-28",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-20512",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20512"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4404"
          }
        ]
      },
      "id": "VAR-200609-1424",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-20512"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:16:33.184000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "APPLE-SA-2006-11-28",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-4404"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.8,
            "url": "http://www.us-cert.gov/cas/techalerts/ta06-333a.html"
          },
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/22083"
          },
          {
            "trust": 2.0,
            "url": "http://docs.info.apple.com/article.html?artnum=304829"
          },
          {
            "trust": 1.7,
            "url": "http://lists.apple.com/archives/security-announce/2006/nov/msg00001.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/21335"
          },
          {
            "trust": 1.7,
            "url": "http://www.osvdb.org/30733"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1017304"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/23155"
          },
          {
            "trust": 1.6,
            "url": "http://www.openssl.org/news/secadv_20060928.txt"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/23280/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/23309/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2006/4750"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu%23386964/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/20246"
          },
          {
            "trust": 0.8,
            "url": "http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.matasano.com/log/469/many-rsa-signatures-may-be-forgeable-in-openssl-and-elsewhere/"
          },
          {
            "trust": 0.8,
            "url": "http://www.openssl.org/news/secadv_20060905.txt "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/21709/"
          },
          {
            "trust": 0.8,
            "url": "http://www.rsasecurity.com/rsalabs/node.asp?id=2125"
          },
          {
            "trust": 0.8,
            "url": "http://www.ietf.org/rfc/rfc3447.txt"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu%23547300/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-september/049715.html "
          },
          {
            "trust": 0.8,
            "url": "https://issues.rpath.com/browse/rpl-613 "
          },
          {
            "trust": 0.8,
            "url": "http://www.openssl.org/news/secadv_20060928.txt "
          },
          {
            "trust": 0.8,
            "url": "http://kolab.org/security/kolab-vendor-notice-11.txt "
          },
          {
            "trust": 0.8,
            "url": "http://openvpn.net/changelog.html "
          },
          {
            "trust": 0.8,
            "url": "http://www.serv-u.com/releasenotes/ "
          },
          {
            "trust": 0.8,
            "url": "http://openbsd.org/errata.html#openssl2 "
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/20249 "
          },
          {
            "trust": 0.8,
            "url": "http://securitytracker.com/id?1016943 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22130 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22094 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22165 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22186 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22193 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22207 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22259 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22260 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22166 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22172 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22212 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22240 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22216 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22116 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22220 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22284 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22330 "
          },
          {
            "trust": 0.8,
            "url": "http://xforce.iss.net/xforce/xfdb/29237 "
          },
          {
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102668-1"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-4404"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-4404"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/4750"
          },
          {
            "trust": 0.3,
            "url": "http://www.info.apple.com/usen/security/security_updates.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/macosx/"
          },
          {
            "trust": 0.3,
            "url": "http://labs.musecurity.com/advisories/mu-200611-01.txt"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20512"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4404"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#386964",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-20512",
            "ident": null
          },
          {
            "db": "BID",
            "id": "21335",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001151",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4404",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2006-09-28T00:00:00",
            "db": "CERT/CC",
            "id": "VU#386964",
            "ident": null
          },
          {
            "date": "2006-09-11T00:00:00",
            "db": "CERT/CC",
            "id": "VU#845620",
            "ident": null
          },
          {
            "date": "2006-09-28T00:00:00",
            "db": "CERT/CC",
            "id": "VU#547300",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "VULHUB",
            "id": "VHN-20512",
            "ident": null
          },
          {
            "date": "2006-11-28T00:00:00",
            "db": "BID",
            "id": "21335",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200611-481",
            "ident": null
          },
          {
            "date": "2012-06-26T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-001151",
            "ident": null
          },
          {
            "date": "2006-11-30T16:28:00",
            "db": "NVD",
            "id": "CVE-2006-4404",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2011-07-22T00:00:00",
            "db": "CERT/CC",
            "id": "VU#386964",
            "ident": null
          },
          {
            "date": "2007-02-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#845620",
            "ident": null
          },
          {
            "date": "2011-07-22T00:00:00",
            "db": "CERT/CC",
            "id": "VU#547300",
            "ident": null
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-20512",
            "ident": null
          },
          {
            "date": "2006-11-30T20:25:00",
            "db": "BID",
            "id": "21335",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200611-481",
            "ident": null
          },
          {
            "date": "2012-06-26T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-001151",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2006-4404",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "OpenSSL SSLv2 client code fails to properly check for NULL",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-481"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201606-0395

    Vulnerability from variot - Updated: 2026-04-10 23:15

    The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName. Libxml2 is a C language-based function library for parsing XML documents developed by the GNOME project team. It supports multiple encoding formats, XPath analysis, Well-formed and valid verification, etc. There is a security vulnerability in the 'xmlParseElementDecl' function in the parser.c file of Libxml2 2.9.3 and earlier. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: libxml2 security update Advisory ID: RHSA-2016:1292-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:1292 Issue date: 2016-06-23 CVE Names: CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4447 CVE-2016-4448 CVE-2016-4449 =====================================================================

    1. Summary:

    An update for libxml2 is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.

    Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

    1. Description:

    The libxml2 library is a development toolbox providing the implementation of various XML standards.

    Security Fix(es):

    A heap-based buffer overflow flaw was found in the way libxml2 parsed certain crafted XML input. (CVE-2016-1834, CVE-2016-1840)

    Multiple denial of service flaws were found in libxml2. (CVE-2016-1762, CVE-2016-1833, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447, CVE-2016-4448, CVE-2016-4449)

    1. Solution:

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    For the update to take effect, all applications linked to the libxml2 library must be restarted, or the system rebooted.

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1319829 - CVE-2016-3627 libxml2: stack exhaustion while parsing xml files in recovery mode 1332443 - CVE-2016-3705 libxml2: stack overflow before detecting invalid XML file 1338682 - CVE-2016-1833 libxml2: Heap-based buffer overread in htmlCurrentChar 1338686 - CVE-2016-4447 libxml2: Heap-based buffer underreads due to xmlParseName 1338691 - CVE-2016-1835 libxml2: Heap use-after-free in xmlSAX2AttributeNs 1338696 - CVE-2016-1837 libxml2: Heap use-after-free in htmlPArsePubidLiteral and htmlParseSystemiteral 1338700 - CVE-2016-4448 libxml2: Format string vulnerability 1338701 - CVE-2016-4449 libxml2: Inappropriate fetch of entities content 1338702 - CVE-2016-1836 libxml2: Heap use-after-free in xmlDictComputeFastKey 1338703 - CVE-2016-1839 libxml2: Heap-based buffer overread in xmlDictAddString 1338705 - CVE-2016-1838 libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal 1338706 - CVE-2016-1840 libxml2: Heap-buffer-overflow in xmlFAParserPosCharGroup 1338708 - CVE-2016-1834 libxml2: Heap-buffer-overflow in xmlStrncat 1338711 - CVE-2016-1762 libxml2: Heap-based buffer-overread in xmlNextChar

    1. Package List:

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    i386: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-python-2.7.6-21.el6_8.1.i686.rpm

    ppc64: libxml2-2.7.6-21.el6_8.1.ppc.rpm libxml2-2.7.6-21.el6_8.1.ppc64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.ppc.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm libxml2-devel-2.7.6-21.el6_8.1.ppc.rpm libxml2-devel-2.7.6-21.el6_8.1.ppc64.rpm libxml2-python-2.7.6-21.el6_8.1.ppc64.rpm

    s390x: libxml2-2.7.6-21.el6_8.1.s390.rpm libxml2-2.7.6-21.el6_8.1.s390x.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.s390.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm libxml2-devel-2.7.6-21.el6_8.1.s390.rpm libxml2-devel-2.7.6-21.el6_8.1.s390x.rpm libxml2-python-2.7.6-21.el6_8.1.s390x.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-static-2.7.6-21.el6_8.1.i686.rpm

    ppc64: libxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm libxml2-static-2.7.6-21.el6_8.1.ppc64.rpm

    s390x: libxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm libxml2-static-2.7.6-21.el6_8.1.s390x.rpm

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    i386: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-python-2.7.6-21.el6_8.1.i686.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-static-2.7.6-21.el6_8.1.i686.rpm

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Client (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Client Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    ppc64: libxml2-2.9.1-6.el7_2.3.ppc.rpm libxml2-2.9.1-6.el7_2.3.ppc64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc64.rpm libxml2-python-2.9.1-6.el7_2.3.ppc64.rpm

    ppc64le: libxml2-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-python-2.9.1-6.el7_2.3.ppc64le.rpm

    s390x: libxml2-2.9.1-6.el7_2.3.s390.rpm libxml2-2.9.1-6.el7_2.3.s390x.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm libxml2-devel-2.9.1-6.el7_2.3.s390.rpm libxml2-devel-2.9.1-6.el7_2.3.s390x.rpm libxml2-python-2.9.1-6.el7_2.3.s390x.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64: libxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm libxml2-static-2.9.1-6.el7_2.3.ppc.rpm libxml2-static-2.9.1-6.el7_2.3.ppc64.rpm

    ppc64le: libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-static-2.9.1-6.el7_2.3.ppc64le.rpm

    s390x: libxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm libxml2-static-2.9.1-6.el7_2.3.s390.rpm libxml2-static-2.9.1-6.el7_2.3.s390x.rpm

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2016-1762 https://access.redhat.com/security/cve/CVE-2016-1833 https://access.redhat.com/security/cve/CVE-2016-1834 https://access.redhat.com/security/cve/CVE-2016-1835 https://access.redhat.com/security/cve/CVE-2016-1836 https://access.redhat.com/security/cve/CVE-2016-1837 https://access.redhat.com/security/cve/CVE-2016-1838 https://access.redhat.com/security/cve/CVE-2016-1839 https://access.redhat.com/security/cve/CVE-2016-1840 https://access.redhat.com/security/cve/CVE-2016-3627 https://access.redhat.com/security/cve/CVE-2016-3705 https://access.redhat.com/security/cve/CVE-2016-4447 https://access.redhat.com/security/cve/CVE-2016-4448 https://access.redhat.com/security/cve/CVE-2016-4449 https://access.redhat.com/security/updates/classification/#important

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFXa8B8XlSAg2UNWIIRAh9ZAJ99xgPhOaIopIxmynm+vlDcmw4jFACeLvTm ZsVLEgJAF0Zt6xZVzqvVW7U= =fREV -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .

    For the stable distribution (jessie), these problems have been fixed in version 2.9.1+dfsg1-5+deb8u2. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512

    APPLE-SA-2016-07-18-2 iOS 9.3.3

    iOS 9.3.3 is now available and addresses the following:

    Calendar Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A maliciously crafted calendar invite may cause a device to unexpectedly restart Description: A null pointer dereference was addressed through improved memory handling. CVE-2016-4592 : Mikhail

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a malicious website may disclose image data from another website Description: A timing issue existed in the processing of SVG. CVE-2016-4587 : Apple

    WebKit JavaScript Bindings Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a maliciously crafted website may lead to script execution in the context of a non-HTTP service Description: A cross-protocol cross-site scripting (XPXSS) issue existed in Safari when submitting forms to non-HTTP services compatible with HTTP/0.9. This issue was addressed by disabling scripts and plugins on resources loaded over HTTP/0.9. CVE-2016-4651 : Obscure

    WebKit Page Loading Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A malicious website may exfiltrate data cross-origin Description: A cross-site scripting issue existed in Safari URL redirection. CVE-2016-4585 : Takeshi Terada of Mitsui Bussan Secure Directions, Inc. CVE-2016-4584 : Chris Vienneau

    Installation note:

    This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from www.apple.com/itunes/

    iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device.

    The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device.

    To check that the iPhone, iPod touch, or iPad has been updated:

    • Navigate to Settings
    • Select General
    • Select About. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512

    APPLE-SA-2016-07-18-1 OS X El Capitan v10.11.6 and Security Update 2016-004

    OS X El Capitan v10.11.6 and Security Update 2016-004 is now available and addresses the following:

    apache_mod_php Available for:
    OS X Yosemite v10.10.5 and OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: Multiple issues existed in PHP versions prior to 5.5.36. These were addressed by updating PHP to version 5.5.36. CVE-2016-4650

    Audio Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed through improved memory handling. CVE-2016-4647 : Juwei Lin (@fuzzerDOTcn) of Trend Micro

    Audio Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to determine kernel memory layout Description: An out-of-bounds read was addressed through improved input validation. CVE-2016-4648 : Juwei Lin(@fuzzerDOTcn) of Trend Micro

    Audio Available for: OS X El Capitan v10.11 and later Impact: Parsing a maliciously crafted audio file may lead to the disclosure of user information Description: An out-of-bounds read was addressed through improved bounds checking. CVE-2016-4646 : Steven Seeley of Source Incite working with Trend Micro's Zero Day Initiative

    Audio Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to cause a system denial of service Description: A null pointer dereference was addressed through improved input validation. CVE-2016-4649 : Juwei Lin(@fuzzerDOTcn) of Trend Micro

    bsdiff Available for: OS X El Capitan v10.11 and later Impact: A local attacker may be able to cause unexpected application termination or arbitrary code execution Description: An integer overflow existed in bspatch. This issue was addressed through improved bounds checking. CVE-2014-9862 : an anonymous researcher

    CFNetwork Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to view sensitive user information Description: A permissions issue existed in the handling of web browser cookies. This issue was addressed through improved restrictions. CVE-2016-4645 : Abhinav Bansal of Zscaler Inc.

    CoreGraphics Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: A memory corruption issue was addressed through improved memory handling. CVE-2016-4637 : Tyler Bohan of Cisco Talos (talosintel.com /vulnerability-reports)

    CoreGraphics Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to elevate privileges Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed through improved input validation. CVE-2016-4652 : Yubin Fu of Tencent KeenLab working with Trend Micro's Zero Day Initiative

    FaceTime Available for: OS X El Capitan v10.11 and later Impact: An attacker in a privileged network position may be able to cause a relayed call to continue transmitting audio while appearing as if the call terminated Description: User interface inconsistencies existed in the handling of relayed calls. These issues were addressed through improved FaceTime display logic. CVE-2016-4635 : Martin Vigo

    Graphics Drivers Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed through improved input validation. CVE-2016-4634 : Stefan Esser of SektionEins

    ImageIO Available for: OS X El Capitan v10.11 and later Impact: A remote attacker may be able to cause a denial of service Description: A memory consumption issue was addressed through improved memory handling. CVE-2016-4632 : Evgeny Sidorov of Yandex

    ImageIO Available for: OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-4631 : Tyler Bohan of Cisco Talos (talosintel.com /vulnerability-reports)

    ImageIO Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-4629 : Tyler Bohan of Cisco Talos (talosintel.com /vulnerability-reports) CVE-2016-4630 : Tyler Bohan of Cisco Talos (talosintel.com /vulnerability-reports)

    Intel Graphics Driver Available for: OS X El Capitan v10.11 and later Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-4633 : an anonymous researcher

    IOHIDFamily Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A null pointer dereference was addressed through improved input validation. CVE-2016-4626 : Stefan Esser of SektionEins

    IOSurface Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: A use-after-free was addressed through improved memory management. CVE-2016-4625 : Ian Beer of Google Project Zero

    Kernel Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-1863 : Ian Beer of Google Project Zero CVE-2016-1864 : Ju Zhu of Trend Micro CVE-2016-4582 : Shrek_wzw and Proteas of Qihoo 360 Nirvan Team

    Kernel Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to cause a system denial of service Description: A null pointer dereference was addressed through improved input validation. CVE-2016-1865 : CESG, Marco Grassi (@marcograss) of KeenLab (@keen_lab), Tencent

    libc++abi Available for: OS X El Capitan v10.11 and later Impact: An application may be able to execute arbitrary code with root privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-4621 : an anonymous researcher

    libexpat Available for: OS X El Capitan v10.11 and later Impact: Processing maliciously crafted XML may lead to unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-0718 : Gustavo Grieco

    LibreSSL Available for: OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: Multiple issues existed in LibreSSL before 2.2.7. These were addressed by updating LibreSSL to version 2.2.7. CVE-2016-2108 : Huzaifa Sidhpurwala (Red Hat), Hanno Boeck, David Benjamin (Google) Mark Brand, Ian Beer of Google Project Zero CVE-2016-2109 : Brian Carpenter

    libxml2 Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 and later Impact: Parsing a maliciously crafted XML document may lead to disclosure of user information Description: An access issue existed in the parsing of maliciously crafted XML files. This issue was addressed through improved input validation. CVE-2016-4449 : Kostya Serebryany

    libxml2 Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 and later Impact: Multiple vulnerabilities in libxml2 Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-1836 : Wei Lei and Liu Yang of Nanyang Technological University CVE-2016-4447 : Wei Lei and Liu Yang of Nanyang Technological University CVE-2016-4448 : Apple CVE-2016-4483 : Gustavo Grieco CVE-2016-4614 : Nick Wellnhofe CVE-2016-4615 : Nick Wellnhofer CVE-2016-4616 : Michael Paddon CVE-2016-4619 : Hanno Boeck

    libxslt Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 and later Impact: Multiple vulnerabilities in libxslt Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-1684 : Nicolas GrA(c)goire CVE-2016-4607 : Nick Wellnhofer CVE-2016-4608 : Nicolas GrA(c)goire CVE-2016-4609 : Nick Wellnhofer CVE-2016-4610 : Nick Wellnhofer CVE-2016-4612 : Nicolas GrA(c)goire

    Login Window Available for: OS X El Capitan v10.11 and later Impact: A malicious application may be able to execute arbitrary code leading to compromise of user information Description: A memory corruption issue was addressed through improved input validation. CVE-2016-4640 : Yubin Fu of Tencent KeenLab working with Trend Micro's Zero Day Initiative

    Login Window Available for: OS X El Capitan v10.11 and later Impact: A malicious application may be able to execute arbitrary code leading to the compromise of user information Description: A type confusion issue was addressed through improved memory handling. CVE-2016-4641 : Yubin Fu of Tencent KeenLab working with Trend Micro's Zero Day Initiative

    Login Window Available for: OS X El Capitan v10.11 and later Impact: A local user may be able to cause a denial of service Description: A memory initialization issue was addressed through improved memory handling. CVE-2016-4639 : Yubin Fu of Tencent KeenLab working with Trend Micro's Zero Day Initiative

    Login Window Available for: OS X El Capitan v10.11 and later Impact: A malicious application may be able to gain root privileges Description: A type confusion issue was addressed through improved memory handling. CVE-2016-4638 : Yubin Fu of Tencent KeenLab working with Trend Micro's Zero Day Initiative

    OpenSSL Available for: OS X El Capitan v10.11 and later Impact: A remote attacker may be able to execute arbitrary code Description: Multiple issues existed in OpenSSL. These issues were resolved by backporting the fixes from OpenSSL 1.0.2h/1.0.1 to OpenSSL 0.9.8. CVE-2016-2105 : Guido Vranken CVE-2016-2106 : Guido Vranken CVE-2016-2107 : Juraj Somorovsky CVE-2016-2108 : Huzaifa Sidhpurwala (Red Hat), Hanno Boeck, David Benjamin (Google), Mark Brand and Ian Beer of Google Project Zero CVE-2016-2109 : Brian Carpenter CVE-2016-2176 : Guido Vranken

    QuickTime Available for: OS X El Capitan v10.11 and later Impact: Processing a maliciously crafted FlashPix Bitmap Image may lead to unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-2016-4596 : Ke Liu of Tencent's Xuanwu Lab CVE-2016-4597 : Ke Liu of Tencent's Xuanwu Lab CVE-2016-4600 : Ke Liu of Tencent's Xuanwu Lab CVE-2016-4602 : Ke Liu of Tencent's Xuanwu Lab

    QuickTime Available for: OS X El Capitan v10.11 and later Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: A memory corruption issue was addressed through improved input validation. CVE-2016-4598 : Ke Liu of Tencent's Xuanwu Lab

    QuickTime Available for: OS X El Capitan v10.11 and later Impact: Processing a maliciously crafted SGI file may lead to arbitrary code execution Description: A memory corruption issue was addressed through improved input validation. CVE-2016-4601 : Ke Liu of Tencent's Xuanwu Lab

    QuickTime Available for: OS X El Capitan v10.11 and later Impact: Processing a maliciously crafted Photoshop document may lead to unexpected application termination or arbitrary code execution Description: A memory corruption issue was addressed through improved input validation. CVE-2016-4599 : Ke Liu of Tencent's Xuanwu Lab

    Safari Login AutoFill Available for: OS X El Capitan v10.11 and later Impact: A user's password may be visible on screen Description: An issue existed in Safari's password auto-fill. This issue was addressed through improved matching of form fields. CVE-2016-4595 : Jonathan Lewis from DeARX Services (PTY) LTD

    Sandbox Profiles Available for: OS X El Capitan v10.11 and later Impact: A local application may be able to access the process list Description: An access issue existed with privileged API calls. This issue was addressed through additional restrictions. CVE-2016-4594 : Stefan Esser of SektionEins

    Note: OS X El Capitan 10.11.6 includes the security content of Safari 9.1.2. For further details see https://support.apple.com/kb/HT206900

    OS X El Capitan v10.11.6 and Security Update 2016-004 may be obtained from the Mac App Store or Apple's Software Downloads web site: http://www.apple.com/support/downloads/

    Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT201222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org

    iQIcBAEBCgAGBQJXjXAvAAoJEIOj74w0bLRG/5EP/2v9SJTrO+/4b3A1gqC1ch8y +cJ04tXRsO7rvjKT5nCylo30U0Sanz/bUbDx4559YS7/P/IyeyZVheaTJwK8wzEy pSOPpy35hUuVIw0/p4YsuHDThSBPFMmDljTxH7elkfuBV1lPSrCkyDXc0re2HxWV xj68zAxtM0jkkhgcxb2ApZSZVXhrjUZtbY0xEVOoWKKFwbMvKfx+4xSqunwQeS1u wevs1EbxfvsZbc3pG+xYcOonbegBzOy9aCvNO1Yv1zG+AYXC5ERMq1vk3PsWOTQN ZVY1I7mvCaEfvmjq2isRw8XYapAIKISDLwMKBSYrZDQFwPQLRi1VXxQZ67Kq1M3k ah04/lr0RIcoosIcBqxD2+1UAFjUzEUNFkYivjhuaeegN2QdL7Ujegf1QjdAt8lk mmKduxYUDOaRX50Kw7n14ZveJqzE1D5I6QSItaZ9M1vR60a7u91DSj9D87vbt1YC JM/Rvf/4vonp1NjwA2JQwCiZfYliBDdn9iiCl8mzxdsSRD/wXcZCs05nnKmKsCfc 55ET7IwdG3622lVheOJGQZuucwJiTn36zC11XVzZysQd/hLD5rUKUQNX1WOgZdzs xPsslXF5MWx9jcdyWVSWxDrN0sFk+GpQFQDuVozP60xuxqR3qQ0TXir2NP39uIF5 YozOGPQFmX0OviWCQsX6 =ng+m -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n a-c05194709

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c05194709 Version: 1

    HPSBGN03628 rev.1 - HPE IceWall Federation Agent using libXML2 library, Remote Denial of Service (DoS), Unauthorized Modification, Unauthorized Disclosure of Information

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2016-07-07 Last Updated: 2016-07-07

    Potential Security Impact: Remote Denial of Service (DoS), Unauthorized Disclosure of Information, Unauthorized Modification

    Source: Hewlett Packard Enterprise, Product Security Response Team

    VULNERABILITY SUMMARY Security vulnerabilities in the libXML2 library could potentially impact HPE IceWall Federation Agent resulting in Remote Denial of Service (DoS), or unauthorized modification, or unauthorized disclosure of information.

    References:

    • CVE-2016-4447: Remote Denial of Service (DoS)
    • CVE-2016-4448: Remote unauthorized disclosure of information, unauthorized modification, Denial of Service (DoS)
    • CVE-2016-4449: Remote unauthorized disclosure of information, Denial of Service (DoS)
    • PSRT110164

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.

    • IceWall Federation Agent Version 3.0 (RHEL 6/7) using libXML2

    BACKGROUND

    CVSS Base Metrics ================= Reference, CVSS V3 Score/Vector, CVSS V2 Score/Vector

    CVE-2016-4447
      7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
      5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
    
    CVE-2016-4448
      9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
      10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)
    
    CVE-2016-4449
      7.1 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
      5.8 (AV:N/AC:M/Au:N/C:P/I:N/A:P)
    
    Information on CVSS is documented in
    HPE Customer Notice HPSN-2008-002 here:
    
      https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docI
    

    d=emr_na-c01345499

    RESOLUTION

    HPE recommends applying the latest OS vendor security patches for libXML2 to resolve the vulnerabilities in the libXML2 library.

    HISTORY Version:1 (rev.1) - 7 July 2016 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running Hewlett Packard Enterprise (HPE) software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HPE Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hpe.com.

    Report: To report a potential security vulnerability with any HPE supported product, send Email to: security-alert@hpe.com

    Subscribe: To initiate a subscription to receive future HPE Security Bulletin alerts via Email: http://www.hpe.com/support/Subscriber_Choice

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://www.hpe.com/support/Security_Bulletin_Archive

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HPE General Software HF = HPE Hardware and Firmware MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PV = ProCurve ST = Storage Software UX = HP-UX

    Copyright 2016 Hewlett Packard Enterprise

    Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett Packard Enterprise and the names of Hewlett Packard Enterprise products referenced herein are trademarks of Hewlett Packard Enterprise in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.

    Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/libxml2-2.9.4-i486-1_slack14.1.txz: Upgraded. Format string vulnerability (CVE-2016-4448). Inappropriate fetch of entities content (CVE-2016-4449). For more information, see: http://xmlsoft.org/news.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4447 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4448 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4449 ( Security fix ) +--------------------------+

    Where to find the new packages: +-----------------------------+

    Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)

    Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.

    Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/libxml2-2.9.4-i486-1_slack14.0.txz

    Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/libxml2-2.9.4-x86_64-1_slack14.0.txz

    Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/libxml2-2.9.4-i486-1_slack14.1.txz

    Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/libxml2-2.9.4-x86_64-1_slack14.1.txz

    Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libxml2-2.9.4-i586-1.txz

    Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libxml2-2.9.4-x86_64-1.txz

    MD5 signatures: +-------------+

    Slackware 14.0 package: c498433ae7d6077a9d5245877aa2c06e libxml2-2.9.4-i486-1_slack14.0.txz

    Slackware x86_64 14.0 package: c92258a87bb30a6cdce2b5428d640bd5 libxml2-2.9.4-x86_64-1_slack14.0.txz

    Slackware 14.1 package: 2b74b913a164a23ad2da10eebf923e46 libxml2-2.9.4-i486-1_slack14.1.txz

    Slackware x86_64 14.1 package: e2dee612c7de77822824e43a61414c2c libxml2-2.9.4-x86_64-1_slack14.1.txz

    Slackware -current package: 98d1ede4a347a49f2ad972ac5339b9e6 l/libxml2-2.9.4-i586-1.txz

    Slackware x86_64 -current package: c2d5721aac77b74d7e47a2a8a372d47a l/libxml2-2.9.4-x86_64-1.txz

    Installation instructions: +------------------------+

    Upgrade the package as root:

    upgradepkg libxml2-2.9.4-i486-1_slack14.1.txz

    +-----+

    Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com

    +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. Description:

    This release of Red Hat JBoss Core Services httpd 2.4.23 serves as a replacement for JBoss Core Services Apache HTTP Server 2.4.6. (CVE-2016-1762, CVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483)

    • This update fixes three flaws in curl. (CVE-2016-5419, CVE-2016-5420, CVE-2016-7141)

    • This update fixes two flaws in httpd. (CVE-2016-4459, CVE-2016-8612)

    • A buffer overflow flaw when concatenating virtual host names and URIs was fixed in mod_jk. (CVE-2016-6808)

    • A memory leak flaw was fixed in expat. Upstream acknowledges Stephen Henson (OpenSSL development team) as the original reporter of CVE-2015-0286; Huzaifa Sidhpurwala (Red Hat), Hanno BAPck, and David Benjamin (Google) as the original reporters of CVE-2016-2108; Guido Vranken as the original reporter of CVE-2016-2105, CVE-2016-2106, CVE-2016-0797, CVE-2016-0799, and CVE-2016-2842; Juraj Somorovsky as the original reporter of CVE-2016-2107; Yuval Yarom (University of Adelaide and NICTA), Daniel Genkin (Technion and Tel Aviv University), and Nadia Heninger (University of Pennsylvania) as the original reporters of CVE-2016-0702; and Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.

    See the corresponding CVE pages linked to in the References section for more information about each of the flaws listed in this advisory. Solution:

    The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).

    After installing the updated packages, the httpd daemon will be restarted automatically. JIRA issues fixed (https://issues.jboss.org/):

    JBCS-50 - CVE-2012-1148 CVE-2012-0876 expat: various flaws [jbews-3.0.0] JBCS-95 - CVE-2014-3523 httpd: WinNT MPM denial of service

    1. CVE-2016-4594 : Stefan Esser of SektionEins

    Installation note:

    Instructions on how to update your Apple Watch software are available at https://support.apple.com/en-us/HT204641

    To check the version on your Apple Watch, open the Apple Watch app on your iPhone and select "My Watch > General > About".

    Alternatively, on your watch, select "My Watch > General > About"

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "web gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.5.2.10"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "15.10"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "iphone os",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "vm server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.4"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.6.0.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "libxml2",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "xmlsoft",
            "version": "2.9.3"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "apple",
            "version": "10.11.5"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "icewall federation agent",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "hp",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "apple",
            "version": "2.2.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.5.0.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.6.2.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "apple",
            "version": "12.4.1"
          },
          {
            "_id": null,
            "model": "vm server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.3"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "16.04"
          },
          {
            "_id": null,
            "model": "libxml2",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "xmlsoft",
            "version": "2.9.3"
          }
        ],
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4447"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Apple",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "137959"
          },
          {
            "db": "PACKETSTORM",
            "id": "137958"
          },
          {
            "db": "PACKETSTORM",
            "id": "137960"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2016-4447",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2016-4447",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-93266",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2016-4447",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-4447",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201605-637",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-93266",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2016-4447",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-93266"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4447"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4447"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName. Libxml2 is a C language-based function library for parsing XML documents developed by the GNOME project team. It supports multiple encoding formats, XPath analysis, Well-formed and valid verification, etc. There is a security vulnerability in the \u0027xmlParseElementDecl\u0027 function in the parser.c file of Libxml2 2.9.3 and earlier. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: libxml2 security update\nAdvisory ID:       RHSA-2016:1292-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2016:1292\nIssue date:        2016-06-23\nCVE Names:         CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 \n                   CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 \n                   CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 \n                   CVE-2016-3627 CVE-2016-3705 CVE-2016-4447 \n                   CVE-2016-4448 CVE-2016-4449 \n=====================================================================\n\n1. Summary:\n\nAn update for libxml2 is now available for Red Hat Enterprise Linux 6 and\nRed Hat Enterprise Linux 7. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. Description:\n\nThe libxml2 library is a development toolbox providing the implementation\nof various XML standards. \n\nSecurity Fix(es):\n\nA heap-based buffer overflow flaw was found in the way libxml2 parsed\ncertain crafted XML input. (CVE-2016-1834,\nCVE-2016-1840)\n\nMultiple denial of service flaws were found in libxml2. \n(CVE-2016-1762, CVE-2016-1833, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837,\nCVE-2016-1838, CVE-2016-1839, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447,\nCVE-2016-4448, CVE-2016-4449)\n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all applications linked to the libxml2\nlibrary must be restarted, or the system rebooted. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1319829 - CVE-2016-3627 libxml2: stack exhaustion while parsing xml files in recovery mode\n1332443 - CVE-2016-3705 libxml2: stack overflow before detecting invalid XML file\n1338682 - CVE-2016-1833 libxml2: Heap-based buffer overread in htmlCurrentChar\n1338686 - CVE-2016-4447 libxml2: Heap-based buffer underreads due to xmlParseName\n1338691 - CVE-2016-1835 libxml2: Heap use-after-free in xmlSAX2AttributeNs\n1338696 - CVE-2016-1837 libxml2: Heap use-after-free in htmlPArsePubidLiteral and htmlParseSystemiteral\n1338700 - CVE-2016-4448 libxml2: Format string vulnerability\n1338701 - CVE-2016-4449 libxml2: Inappropriate fetch of entities content\n1338702 - CVE-2016-1836 libxml2: Heap use-after-free in xmlDictComputeFastKey\n1338703 - CVE-2016-1839 libxml2: Heap-based buffer overread in xmlDictAddString\n1338705 - CVE-2016-1838 libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal\n1338706 - CVE-2016-1840 libxml2: Heap-buffer-overflow in xmlFAParserPosCharGroup\n1338708 - CVE-2016-1834 libxml2: Heap-buffer-overflow in xmlStrncat\n1338711 - CVE-2016-1762 libxml2: Heap-based buffer-overread in xmlNextChar\n\n6. Package List:\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\ni386:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-python-2.7.6-21.el6_8.1.i686.rpm\n\nppc64:\nlibxml2-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.ppc64.rpm\n\ns390x:\nlibxml2-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-python-2.7.6-21.el6_8.1.s390x.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-static-2.7.6-21.el6_8.1.i686.rpm\n\nppc64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.ppc64.rpm\n\ns390x:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-static-2.7.6-21.el6_8.1.s390x.rpm\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\ni386:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-python-2.7.6-21.el6_8.1.i686.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-static-2.7.6-21.el6_8.1.i686.rpm\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nppc64:\nlibxml2-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.ppc64.rpm\n\nppc64le:\nlibxml2-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-python-2.9.1-6.el7_2.3.ppc64le.rpm\n\ns390x:\nlibxml2-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-python-2.9.1-6.el7_2.3.s390x.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc64.rpm\n\nppc64le:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc64le.rpm\n\ns390x:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-static-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-static-2.9.1-6.el7_2.3.s390x.rpm\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2016-1762\nhttps://access.redhat.com/security/cve/CVE-2016-1833\nhttps://access.redhat.com/security/cve/CVE-2016-1834\nhttps://access.redhat.com/security/cve/CVE-2016-1835\nhttps://access.redhat.com/security/cve/CVE-2016-1836\nhttps://access.redhat.com/security/cve/CVE-2016-1837\nhttps://access.redhat.com/security/cve/CVE-2016-1838\nhttps://access.redhat.com/security/cve/CVE-2016-1839\nhttps://access.redhat.com/security/cve/CVE-2016-1840\nhttps://access.redhat.com/security/cve/CVE-2016-3627\nhttps://access.redhat.com/security/cve/CVE-2016-3705\nhttps://access.redhat.com/security/cve/CVE-2016-4447\nhttps://access.redhat.com/security/cve/CVE-2016-4448\nhttps://access.redhat.com/security/cve/CVE-2016-4449\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2016 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFXa8B8XlSAg2UNWIIRAh9ZAJ99xgPhOaIopIxmynm+vlDcmw4jFACeLvTm\nZsVLEgJAF0Zt6xZVzqvVW7U=\n=fREV\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 2.9.1+dfsg1-5+deb8u2. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\nAPPLE-SA-2016-07-18-2 iOS 9.3.3\n\niOS 9.3.3 is now available and addresses the following:\n\nCalendar\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A maliciously crafted calendar invite may cause a device to\nunexpectedly restart\nDescription:  A null pointer dereference was addressed through\nimproved memory handling. \nCVE-2016-4592 : Mikhail\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a malicious website may disclose image data from\nanother website\nDescription:  A timing issue existed in the processing of SVG. \nCVE-2016-4587 : Apple\n\nWebKit JavaScript Bindings\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a maliciously crafted website may lead to script\nexecution in the context of a non-HTTP service\nDescription:  A cross-protocol cross-site scripting (XPXSS) issue\nexisted in Safari when submitting forms to non-HTTP services\ncompatible with HTTP/0.9. This issue was addressed by disabling\nscripts and plugins on resources loaded over HTTP/0.9. \nCVE-2016-4651 : Obscure\n\nWebKit Page Loading\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A malicious website may exfiltrate data cross-origin\nDescription:  A cross-site scripting issue existed in Safari URL\nredirection. \nCVE-2016-4585 : Takeshi Terada of Mitsui Bussan Secure Directions,\nInc. \nCVE-2016-4584 : Chris Vienneau\n\nInstallation note:\n\nThis update is available through iTunes and Software Update on your\niOS device, and will not appear in your computer\u0027s Software Update\napplication, or in the Apple Downloads site. Make sure you have an\nInternet connection and have installed the latest version of iTunes\nfrom www.apple.com/itunes/\n\niTunes and Software Update on the device will automatically check\nApple\u0027s update server on its weekly schedule. When an update is\ndetected, it is downloaded and the option to be installed is\npresented to the user when the iOS device is docked. We recommend\napplying the update immediately if possible. Selecting Don\u0027t Install\nwill present the option the next time you connect your iOS device. \n\nThe automatic update process may take up to a week depending on the\nday that iTunes or the device checks for updates. You may manually\nobtain the update via the Check for Updates button within iTunes, or\nthe Software Update on your device. \n\nTo check that the iPhone, iPod touch, or iPad has been updated:\n\n* Navigate to Settings\n* Select General\n* Select About. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\nAPPLE-SA-2016-07-18-1 OS X El Capitan v10.11.6 and Security Update\n2016-004\n\nOS X El Capitan v10.11.6 and Security Update 2016-004 is now\navailable and addresses the following:\n\napache_mod_php\nAvailable for:  \nOS X Yosemite v10.10.5 and OS X El Capitan v10.11 and later\nImpact:  A remote attacker may be able to execute arbitrary code\nDescription:  Multiple issues existed in PHP versions prior to\n5.5.36. These were addressed by updating PHP to version 5.5.36. \nCVE-2016-4650\n\nAudio\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue was addressed through\nimproved memory handling. \nCVE-2016-4647 : Juwei Lin (@fuzzerDOTcn) of Trend Micro\n\nAudio\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to determine kernel memory layout\nDescription:  An out-of-bounds read was addressed through improved\ninput validation. \nCVE-2016-4648 : Juwei Lin(@fuzzerDOTcn) of Trend Micro\n\nAudio\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  Parsing a maliciously crafted audio file may lead to the\ndisclosure of user information\nDescription:  An out-of-bounds read was addressed through improved\nbounds checking. \nCVE-2016-4646 : Steven Seeley of Source Incite working with Trend\nMicro\u0027s Zero Day Initiative\n\nAudio\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to cause a system denial of service\nDescription:  A null pointer dereference was addressed through\nimproved input validation. \nCVE-2016-4649 : Juwei Lin(@fuzzerDOTcn) of Trend Micro\n\nbsdiff\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local attacker may be able to cause unexpected application\ntermination or arbitrary code execution\nDescription:  An integer overflow existed in bspatch. This issue was\naddressed through improved bounds checking. \nCVE-2014-9862 : an anonymous researcher\n\nCFNetwork\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to view sensitive user information\nDescription:  A permissions issue existed in the handling of web\nbrowser cookies. This issue was addressed through improved\nrestrictions. \nCVE-2016-4645 : Abhinav Bansal of Zscaler Inc. \n\nCoreGraphics\nAvailable for:  OS X Mavericks v10.9.5, OS X Yosemite v10.10.5,\nand OS X El Capitan v10.11 and later\nImpact:  A remote attacker may be able to execute arbitrary code\nDescription:  A memory corruption issue was addressed through\nimproved memory handling. \nCVE-2016-4637 : Tyler Bohan of Cisco Talos (talosintel.com\n/vulnerability-reports)\n\nCoreGraphics\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to elevate privileges\nDescription:  An out-of-bounds read issue existed that led to the\ndisclosure of kernel memory. This was addressed through improved\ninput validation. \nCVE-2016-4652 : Yubin Fu of Tencent KeenLab working with Trend\nMicro\u0027s Zero Day Initiative\n\nFaceTime\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  An attacker in a privileged network position may be able to\ncause a relayed call to continue transmitting audio while appearing\nas if the call terminated\nDescription:  User interface inconsistencies existed in the handling\nof relayed calls. These issues were addressed through improved\nFaceTime display logic. \nCVE-2016-4635 : Martin Vigo\n\nGraphics Drivers\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue was addressed through\nimproved input validation. \nCVE-2016-4634 : Stefan Esser of SektionEins\n\nImageIO\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A remote attacker may be able to cause a denial of service\nDescription:  A memory consumption issue was addressed through\nimproved memory handling. \nCVE-2016-4632 : Evgeny Sidorov of Yandex\n\nImageIO\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A remote attacker may be able to execute arbitrary code\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-4631 : Tyler Bohan of Cisco Talos (talosintel.com\n/vulnerability-reports)\n\nImageIO\nAvailable for:  OS X Mavericks v10.9.5, OS X Yosemite v10.10.5,\nand OS X El Capitan v10.11 and later\nImpact:  A remote attacker may be able to execute arbitrary code\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-4629 : Tyler Bohan of Cisco Talos (talosintel.com\n/vulnerability-reports)\nCVE-2016-4630 : Tyler Bohan of Cisco Talos (talosintel.com\n/vulnerability-reports)\n\nIntel Graphics Driver\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A malicious application may be able to execute arbitrary\ncode with kernel privileges\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-4633 : an anonymous researcher\n\nIOHIDFamily\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A null pointer dereference was addressed through\nimproved input validation. \nCVE-2016-4626 : Stefan Esser of SektionEins\n\nIOSurface\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  A use-after-free was addressed through improved memory\nmanagement. \nCVE-2016-4625 : Ian Beer of Google Project Zero\n\nKernel\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-1863 : Ian Beer of Google Project Zero\nCVE-2016-1864 : Ju Zhu of Trend Micro\nCVE-2016-4582 : Shrek_wzw and Proteas of Qihoo 360 Nirvan Team\n\nKernel\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to cause a system denial of service\nDescription:  A null pointer dereference was addressed through\nimproved input validation. \nCVE-2016-1865 : CESG, Marco Grassi (@marcograss) of KeenLab\n(@keen_lab), Tencent\n\nlibc++abi\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  An application may be able to execute arbitrary code with\nroot privileges\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-4621 : an anonymous researcher\n\nlibexpat\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  Processing maliciously crafted XML may lead to unexpected\napplication termination or arbitrary code execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-0718 : Gustavo Grieco\n\nLibreSSL\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A remote attacker may be able to execute arbitrary code\nDescription:  Multiple issues existed in LibreSSL before 2.2.7. These\nwere addressed by updating LibreSSL to version 2.2.7. \nCVE-2016-2108 : Huzaifa Sidhpurwala (Red Hat), Hanno Boeck, David Benjamin (Google) Mark Brand,\nIan Beer of Google Project Zero\nCVE-2016-2109 : Brian Carpenter\n\nlibxml2\nAvailable for:  OS X Mavericks v10.9.5, OS X Yosemite v10.10.5,\nand OS X El Capitan v10.11 and later\nImpact:  Parsing a maliciously crafted XML document may lead to\ndisclosure of user information\nDescription:  An access issue existed in the parsing of maliciously\ncrafted XML files. This issue was addressed through improved input\nvalidation. \nCVE-2016-4449 : Kostya Serebryany\n\nlibxml2\nAvailable for:  OS X Mavericks v10.9.5, OS X Yosemite v10.10.5,\nand OS X El Capitan v10.11 and later\nImpact:  Multiple vulnerabilities in libxml2\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-1836 : Wei Lei and Liu Yang of Nanyang Technological\nUniversity\nCVE-2016-4447 : Wei Lei and Liu Yang of Nanyang Technological\nUniversity\nCVE-2016-4448 : Apple\nCVE-2016-4483 : Gustavo Grieco\nCVE-2016-4614 : Nick Wellnhofe\nCVE-2016-4615 : Nick Wellnhofer\nCVE-2016-4616 : Michael Paddon\nCVE-2016-4619 : Hanno Boeck\n\nlibxslt\nAvailable for:  OS X Mavericks v10.9.5, OS X Yosemite v10.10.5,\nand OS X El Capitan v10.11 and later\nImpact:  Multiple vulnerabilities in libxslt\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-1684 : Nicolas GrA(c)goire\nCVE-2016-4607 : Nick Wellnhofer\nCVE-2016-4608 : Nicolas GrA(c)goire\nCVE-2016-4609 : Nick Wellnhofer\nCVE-2016-4610 : Nick Wellnhofer\nCVE-2016-4612 : Nicolas GrA(c)goire\n\nLogin Window\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A malicious application may be able to execute arbitrary\ncode leading to compromise of user information\nDescription:  A memory corruption issue was addressed through\nimproved input validation. \nCVE-2016-4640 : Yubin Fu of Tencent KeenLab working with Trend\nMicro\u0027s Zero Day Initiative\n\nLogin Window\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A malicious application may be able to execute arbitrary\ncode leading to the compromise of user information\nDescription:  A type confusion issue was addressed through improved\nmemory handling. \nCVE-2016-4641 : Yubin Fu of Tencent KeenLab working with Trend\nMicro\u0027s Zero Day Initiative\n\nLogin Window\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local user may be able to cause a denial of service\nDescription:  A memory initialization issue was addressed through\nimproved memory handling. \nCVE-2016-4639 : Yubin Fu of Tencent KeenLab working with Trend\nMicro\u0027s Zero Day Initiative\n\nLogin Window\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A malicious application may be able to gain root privileges\nDescription:  A type confusion issue was addressed through improved\nmemory handling. \nCVE-2016-4638 : Yubin Fu of Tencent KeenLab working with Trend\nMicro\u0027s Zero Day Initiative\n\nOpenSSL\nAvailable for: OS X El Capitan v10.11 and later\nImpact: A remote attacker may be able to execute arbitrary code\nDescription: Multiple issues existed in OpenSSL. These issues were resolved by backporting the fixes from OpenSSL 1.0.2h/1.0.1 to OpenSSL 0.9.8. \nCVE-2016-2105 : Guido Vranken\nCVE-2016-2106 : Guido Vranken\nCVE-2016-2107 : Juraj Somorovsky\nCVE-2016-2108 : Huzaifa Sidhpurwala (Red Hat), Hanno Boeck, David Benjamin (Google), Mark Brand and Ian Beer of Google Project Zero\nCVE-2016-2109 : Brian Carpenter\nCVE-2016-2176 : Guido Vranken\n\nQuickTime\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  Processing a maliciously crafted FlashPix Bitmap Image may\nlead to unexpected application termination or arbitrary code\nexecution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-2016-4596 : Ke Liu of Tencent\u0027s Xuanwu Lab\nCVE-2016-4597 : Ke Liu of Tencent\u0027s Xuanwu Lab\nCVE-2016-4600 : Ke Liu of Tencent\u0027s Xuanwu Lab\nCVE-2016-4602 : Ke Liu of Tencent\u0027s Xuanwu Lab\n\nQuickTime\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  Processing a maliciously crafted image may lead to arbitrary\ncode execution\nDescription:  A memory corruption issue was addressed through\nimproved input validation. \nCVE-2016-4598 : Ke Liu of Tencent\u0027s Xuanwu Lab\n\nQuickTime\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  Processing a maliciously crafted SGI file may lead to\narbitrary code execution\nDescription:  A memory corruption issue was addressed through\nimproved input validation. \nCVE-2016-4601 : Ke Liu of Tencent\u0027s Xuanwu Lab\n\nQuickTime\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  Processing a maliciously crafted Photoshop document may lead\nto unexpected application termination or arbitrary code execution\nDescription:  A memory corruption issue was addressed through\nimproved input validation. \nCVE-2016-4599 : Ke Liu of Tencent\u0027s Xuanwu Lab\n\nSafari Login AutoFill\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A user\u0027s password may be visible on screen\nDescription:  An issue existed in Safari\u0027s password auto-fill. This\nissue was addressed through improved matching of form fields. \nCVE-2016-4595 : Jonathan Lewis from DeARX Services (PTY) LTD\n\nSandbox Profiles\nAvailable for:  OS X El Capitan v10.11 and later\nImpact:  A local application may be able to access the process list\nDescription:  An access issue existed with privileged API calls. This\nissue was addressed through additional restrictions. \nCVE-2016-4594 : Stefan Esser of SektionEins\n\nNote: OS X El Capitan 10.11.6 includes the security content of Safari\n9.1.2. For further details see https://support.apple.com/kb/HT206900\n\n\nOS X El Capitan v10.11.6 and Security Update 2016-004 may be obtained\nfrom the Mac App Store or Apple\u0027s Software Downloads web site:\nhttp://www.apple.com/support/downloads/\n\nInformation will also be posted to the Apple Security Updates\nweb site: http://support.apple.com/kb/HT201222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n-----BEGIN PGP SIGNATURE-----\nComment: GPGTools - https://gpgtools.org\n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\nYozOGPQFmX0OviWCQsX6\n=ng+m\n-----END PGP SIGNATURE-----\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_n\na-c05194709\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c05194709\nVersion: 1\n\nHPSBGN03628 rev.1 - HPE IceWall Federation Agent using libXML2 library,\nRemote Denial of Service (DoS), Unauthorized Modification, Unauthorized\nDisclosure of Information\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2016-07-07\nLast Updated: 2016-07-07\n\nPotential Security Impact: Remote Denial of Service (DoS), Unauthorized\nDisclosure of Information, Unauthorized Modification\n\nSource: Hewlett Packard Enterprise, Product Security Response Team\n\nVULNERABILITY SUMMARY\nSecurity vulnerabilities in the libXML2 library could potentially impact HPE\nIceWall Federation Agent resulting in Remote Denial of Service (DoS), or\nunauthorized modification, or unauthorized disclosure of information. \n\nReferences:\n\n  - CVE-2016-4447: Remote Denial of Service (DoS)\n  - CVE-2016-4448: Remote unauthorized disclosure of information,\nunauthorized modification, Denial of Service (DoS)\n  - CVE-2016-4449: Remote unauthorized disclosure of information, Denial of\nService (DoS)\n  - PSRT110164\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \n\n  - IceWall Federation Agent Version 3.0 (RHEL 6/7) using libXML2\n\nBACKGROUND\n\n  CVSS Base Metrics\n  =================\n  Reference, CVSS V3 Score/Vector, CVSS V2 Score/Vector\n\n    CVE-2016-4447\n      7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\n      5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)\n\n    CVE-2016-4448\n      9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\n      10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)\n\n    CVE-2016-4449\n      7.1 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H\n      5.8 (AV:N/AC:M/Au:N/C:P/I:N/A:P)\n\n    Information on CVSS is documented in\n    HPE Customer Notice HPSN-2008-002 here:\n\n      https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docI\nd=emr_na-c01345499\n\nRESOLUTION\n\nHPE recommends applying the latest OS vendor security patches for libXML2 to\nresolve the vulnerabilities in the libXML2 library. \n\nHISTORY\nVersion:1 (rev.1) - 7 July 2016 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running Hewlett Packard Enterprise (HPE) software\nproducts should be applied in accordance with the customer\u0027s patch management\npolicy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HPE Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hpe.com. \n\nReport: To report a potential security vulnerability with any HPE supported\nproduct, send Email to: security-alert@hpe.com\n\nSubscribe: To initiate a subscription to receive future HPE Security Bulletin\nalerts via Email: http://www.hpe.com/support/Subscriber_Choice\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here: http://www.hpe.com/support/Security_Bulletin_Archive\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HPE General Software\nHF = HPE Hardware and Firmware\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPV = ProCurve\nST = Storage Software\nUX = HP-UX\n\nCopyright 2016 Hewlett Packard Enterprise\n\nHewlett Packard Enterprise shall not be liable for technical or editorial\nerrors or omissions contained herein. The information provided is provided\n\"as is\" without warranty of any kind. To the extent permitted by law, neither\nHP or its affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. Hewlett\nPackard Enterprise and the names of Hewlett Packard Enterprise products\nreferenced herein are trademarks of Hewlett Packard Enterprise in the United\nStates and other countries. Other product and company names mentioned herein\nmay be trademarks of their respective owners. \n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n+--------------------------+\npatches/packages/libxml2-2.9.4-i486-1_slack14.1.txz:  Upgraded. \n  Format string vulnerability (CVE-2016-4448). \n  Inappropriate fetch of entities content (CVE-2016-4449). \n  For more information, see:\n    http://xmlsoft.org/news.html\n    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4447\n    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4448\n    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4449\n  (* Security fix *)\n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project!  :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/libxml2-2.9.4-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/libxml2-2.9.4-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/libxml2-2.9.4-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/libxml2-2.9.4-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libxml2-2.9.4-i586-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libxml2-2.9.4-x86_64-1.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 14.0 package:\nc498433ae7d6077a9d5245877aa2c06e  libxml2-2.9.4-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\nc92258a87bb30a6cdce2b5428d640bd5  libxml2-2.9.4-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\n2b74b913a164a23ad2da10eebf923e46  libxml2-2.9.4-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\ne2dee612c7de77822824e43a61414c2c  libxml2-2.9.4-x86_64-1_slack14.1.txz\n\nSlackware -current package:\n98d1ede4a347a49f2ad972ac5339b9e6  l/libxml2-2.9.4-i586-1.txz\n\nSlackware x86_64 -current package:\nc2d5721aac77b74d7e47a2a8a372d47a  l/libxml2-2.9.4-x86_64-1.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the package as root:\n# upgradepkg libxml2-2.9.4-i486-1_slack14.1.txz\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list:                          |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message:                                                     |\n|                                                                        |\n|   unsubscribe slackware-security                                       |\n|                                                                        |\n| You will get a confirmation message back containing instructions to    |\n| complete the process.  Please do not reply to this email address. Description:\n\nThis release of Red Hat JBoss Core Services httpd 2.4.23 serves as a\nreplacement for JBoss Core Services Apache HTTP Server 2.4.6. (CVE-2016-1762,\nCVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837,\nCVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705,\nCVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483)\n\n* This update fixes three flaws in curl. (CVE-2016-5419, CVE-2016-5420,\nCVE-2016-7141)\n\n* This update fixes two flaws in httpd. (CVE-2016-4459,\nCVE-2016-8612)\n\n* A buffer overflow flaw when concatenating virtual host names and URIs was\nfixed in mod_jk. (CVE-2016-6808)\n\n* A memory leak flaw was fixed in expat. Upstream acknowledges Stephen Henson (OpenSSL development team)\nas the original reporter of CVE-2015-0286; Huzaifa Sidhpurwala (Red Hat),\nHanno BAPck, and David Benjamin (Google) as the original reporters of\nCVE-2016-2108; Guido Vranken as the original reporter of CVE-2016-2105,\nCVE-2016-2106, CVE-2016-0797, CVE-2016-0799, and CVE-2016-2842; Juraj\nSomorovsky as the original reporter of CVE-2016-2107; Yuval Yarom\n(University of Adelaide and NICTA), Daniel Genkin (Technion and Tel Aviv\nUniversity), and Nadia Heninger (University of Pennsylvania) as the\noriginal reporters of CVE-2016-0702; and Adam Langley (Google/BoringSSL) as\nthe original reporter of CVE-2016-0705. \n\nSee the corresponding CVE pages linked to in the References section for\nmore information about each of the flaws listed in this advisory. Solution:\n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting Red Hat JBoss Web Server installation (including all applications\nand configuration files). \n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically. JIRA issues fixed (https://issues.jboss.org/):\n\nJBCS-50 - CVE-2012-1148 CVE-2012-0876 expat: various flaws [jbews-3.0.0]\nJBCS-95 - CVE-2014-3523 httpd: WinNT MPM denial of service\n\n6. \nCVE-2016-4594 : Stefan Esser of SektionEins\n\nInstallation note:\n\nInstructions on how to update your Apple Watch software are\navailable at https://support.apple.com/en-us/HT204641\n\nTo check the version on your Apple Watch, open the Apple Watch app\non your iPhone and select \"My Watch \u003e General \u003e About\". \n\nAlternatively, on your watch, select \"My Watch \u003e General \u003e About\"",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-4447"
          },
          {
            "db": "VULHUB",
            "id": "VHN-93266"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4447"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137959"
          },
          {
            "db": "PACKETSTORM",
            "id": "137958"
          },
          {
            "db": "PACKETSTORM",
            "id": "137808"
          },
          {
            "db": "PACKETSTORM",
            "id": "137222"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "PACKETSTORM",
            "id": "137960"
          }
        ],
        "trust": 1.8
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-4447",
            "trust": 2.6
          },
          {
            "db": "MCAFEE",
            "id": "SB10170",
            "trust": 1.8
          },
          {
            "db": "SECTRACK",
            "id": "1036348",
            "trust": 1.8
          },
          {
            "db": "BID",
            "id": "90864",
            "trust": 1.8
          },
          {
            "db": "TENABLE",
            "id": "TNS-2016-18",
            "trust": 1.8
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2016/05/25/2",
            "trust": 1.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.3732",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2020.2340",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "137808",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "137222",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-93266",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4447",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137613",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137298",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137959",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137958",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "140182",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137960",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-93266"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4447"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137959"
          },
          {
            "db": "PACKETSTORM",
            "id": "137958"
          },
          {
            "db": "PACKETSTORM",
            "id": "137808"
          },
          {
            "db": "PACKETSTORM",
            "id": "137222"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "PACKETSTORM",
            "id": "137960"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4447"
          }
        ]
      },
      "id": "VAR-201606-0395",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-93266"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:15:26.893000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Libxml2 Fixes for heap-based buffer overflow vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=61947"
          },
          {
            "title": "Apple: iTunes 12.4.2 for Windows",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=339c5983ed5d4c0416124ae9d69fd04c"
          },
          {
            "title": "Apple: iCloud for Windows 5.2.1",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=51a96564f5e244335eb2e803eca179c4"
          },
          {
            "title": "Red Hat: Important: Red Hat JBoss Core Services Apache HTTP 2.4.23 Release",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20162957 - Security Advisory"
          },
          {
            "title": "Ubuntu Security Notice: libxml2 vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2994-1"
          },
          {
            "title": "Apple: tvOS 9.2.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=9cb2b3a54d5cecfa5af6c947e8d6031c"
          },
          {
            "title": "Apple: watchOS 2.2.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=fc1eeaa401404fa32e6565c94a51a370"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-3705: stack overflow before detecting invalid XML file",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=ed475d816a8279c18b15a9aac8146ada"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: Heap-buffer overread in libxml2/dict.c",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1b5e8a6bfa7b3b48920376b728b6bbe2"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-2073: out-of-bounds read in htmlParseNameComplex()",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=e21c0505f8306f0416606e1a2ec5e18e"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-3627: stack exhaustion in libxml2 parsing xml files in recover mode",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=7ad6e7048d3904deff82dbbe81adf528"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-4483",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=17d0780fd9f0deb51d01d88ca9e90fe3"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2016-719",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2016-719"
          },
          {
            "title": "Apple: iOS 9.3.3",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=d61ee6bed9ca45acb3a9ebce2f29da36"
          },
          {
            "title": "Apple: OS X El Capitan v10.11.6 and Security Update 2016-004",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=0d15a2e676b3d7c13f2468e8bb26534c"
          },
          {
            "title": "Oracle Solaris Third Party Bulletins: Oracle Solaris Third Party Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_solaris_third_party_bulletins\u0026qid=ac5af5dd99788925425f5747ec672707"
          },
          {
            "title": "Symantec Security Advisories: SA129 : Multiple libxml2 Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=4306b2beef409e7d3306d20a4621babf"
          },
          {
            "title": "Oracle VM Server for x86 Bulletins: Oracle VM Server for x86 Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_vm_server_for_x86_bulletins\u0026qid=6c15273f6bf4a785175f27073b98a1ce"
          },
          {
            "title": "Oracle Linux Bulletins: Oracle Linux Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_linux_bulletins\u0026qid=0bd8c924b56aac98dda0f5b45f425f38"
          },
          {
            "title": "Tenable Security Advisories: [R7] LCE 4.8.1 Fixes Multiple Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2016-18"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2016-4447"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-93266"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4447"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/90864"
          },
          {
            "trust": 1.9,
            "url": "https://access.redhat.com/errata/rhsa-2016:1292"
          },
          {
            "trust": 1.9,
            "url": "http://rhn.redhat.com/errata/rhsa-2016-2957.html"
          },
          {
            "trust": 1.9,
            "url": "http://xmlsoft.org/news.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.securitytracker.com/id/1036348"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/jul/msg00000.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/jul/msg00001.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/jul/msg00002.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/jul/msg00003.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/jul/msg00005.html"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2016/dsa-3593"
          },
          {
            "trust": 1.8,
            "url": "http://www.ubuntu.com/usn/usn-2994-1"
          },
          {
            "trust": 1.8,
            "url": "http://www.openwall.com/lists/oss-security/2016/05/25/2"
          },
          {
            "trust": 1.8,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
          },
          {
            "trust": 1.8,
            "url": "https://git.gnome.org/browse/libxml2/commit/?id=00906759053986b8079985644172085f74331f83"
          },
          {
            "trust": 1.8,
            "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05194709"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206899"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206901"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206902"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206903"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206904"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206905"
          },
          {
            "trust": 1.8,
            "url": "https://www.tenable.com/security/tns-2016-18"
          },
          {
            "trust": 1.7,
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.404722"
          },
          {
            "trust": 1.7,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10170"
          },
          {
            "trust": 0.8,
            "url": "https://access.redhat.com/security/cve/cve-2016-4447"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4449"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4447"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1836"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4448"
          },
          {
            "trust": 0.6,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1338686"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2016:2957"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2020.2340/"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.3732"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4483"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1837"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1839"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1838"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1833"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1762"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1834"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1835"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1840"
          },
          {
            "trust": 0.3,
            "url": "https://support.apple.com/kb/ht201222"
          },
          {
            "trust": 0.3,
            "url": "https://gpgtools.org"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1865"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1863"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4582"
          },
          {
            "trust": 0.3,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1864"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4607"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1684"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4594"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1838"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1837"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-3705"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1834"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4448"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1839"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1833"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-3627"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1840"
          },
          {
            "trust": 0.2,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1836"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1762"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1835"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4449"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-3705"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-3627"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4609"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4612"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4610"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4608"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2107"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2109"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2106"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2108"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2105"
          },
          {
            "trust": 0.1,
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026amp;y=2016\u0026amp;m=slackware-security.404722"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10170"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/119.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht206901"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2994-1/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8806"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2073"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4605"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/itunes/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4591"
          },
          {
            "trust": 0.1,
            "url": "https://www.tencent.com)"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4589"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4585"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4587"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4603"
          },
          {
            "trust": 0.1,
            "url": "https://www.mbsd.jp)"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4604"
          },
          {
            "trust": 0.1,
            "url": "https://www.tencent.com),"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4593"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4583"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4590"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4592"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4584"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0718"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4599"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4601"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4600"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4597"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4596"
          },
          {
            "trust": 0.1,
            "url": "http://www.apple.com/support/downloads/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4595"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9862"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4598"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4602"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht206900"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2176"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_n"
          },
          {
            "trust": 0.1,
            "url": "http://www.hpe.com/support/security_bulletin_archive"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay/?doci"
          },
          {
            "trust": 0.1,
            "url": "http://www.hpe.com/support/subscriber_choice"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-4449"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-4448"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com"
          },
          {
            "trust": 0.1,
            "url": "http://osuosl.org)"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/gpg-key"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-4447"
          },
          {
            "trust": 0.1,
            "url": "https://issues.jboss.org/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2106"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0702"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0797"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-6808"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en/red-hat-jboss-core-services-apache-http-server/version-2.4.23/apache-http-server-2423-release-notes/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0799"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2177"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-4483"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2842"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-8612"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1148"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0797"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3185"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3185"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?product=core.service.apachehttp\u0026downloadtype=distributions\u0026version=2.4.23"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2105"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-5420"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2178"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2108"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2012-1148"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2109"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3195"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-5419"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-4459"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3195"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0702"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-7141"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0799"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4637"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4616"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4626"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4627"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4619"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/en-us/ht204641"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4615"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4628"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4632"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4614"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4631"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-93266"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4447"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137959"
          },
          {
            "db": "PACKETSTORM",
            "id": "137958"
          },
          {
            "db": "PACKETSTORM",
            "id": "137808"
          },
          {
            "db": "PACKETSTORM",
            "id": "137222"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "PACKETSTORM",
            "id": "137960"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4447"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-93266",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-4447",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137613",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137298",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137959",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137958",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137808",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137222",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "140182",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137960",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2016-4447",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-06-09T00:00:00",
            "db": "VULHUB",
            "id": "VHN-93266",
            "ident": null
          },
          {
            "date": "2016-06-09T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-4447",
            "ident": null
          },
          {
            "date": "2016-06-23T13:00:52",
            "db": "PACKETSTORM",
            "id": "137613",
            "ident": null
          },
          {
            "date": "2016-06-02T16:29:00",
            "db": "PACKETSTORM",
            "id": "137298",
            "ident": null
          },
          {
            "date": "2016-07-19T19:47:55",
            "db": "PACKETSTORM",
            "id": "137959",
            "ident": null
          },
          {
            "date": "2016-07-19T19:45:20",
            "db": "PACKETSTORM",
            "id": "137958",
            "ident": null
          },
          {
            "date": "2016-07-07T20:25:00",
            "db": "PACKETSTORM",
            "id": "137808",
            "ident": null
          },
          {
            "date": "2016-05-27T18:18:00",
            "db": "PACKETSTORM",
            "id": "137222",
            "ident": null
          },
          {
            "date": "2016-12-16T16:34:49",
            "db": "PACKETSTORM",
            "id": "140182",
            "ident": null
          },
          {
            "date": "2016-07-19T20:00:50",
            "db": "PACKETSTORM",
            "id": "137960",
            "ident": null
          },
          {
            "date": "2016-05-26T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201605-637",
            "ident": null
          },
          {
            "date": "2016-06-09T16:59:05.707000",
            "db": "NVD",
            "id": "CVE-2016-4447",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2023-02-12T00:00:00",
            "db": "VULHUB",
            "id": "VHN-93266",
            "ident": null
          },
          {
            "date": "2019-03-26T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-4447",
            "ident": null
          },
          {
            "date": "2023-06-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201605-637",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2016-4447",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137808"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "_id": null,
        "data": "libxml2 Buffer error vulnerability",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "_id": null,
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-637"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201605-0466

    Vulnerability from variot - Updated: 2026-04-10 23:10

    The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document. Apple Mac OS X, watchOS, iOS, and tvOS are prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code and bypass security restrictions. Failed exploit attempts may result in a denial-of-service condition. Versions prior to iOS 9.3.2, watchOS 2.2.1, Mac OS X 10.11.5, and tvOS 9.2.1 are vulnerable. in the United States. Apple iOS is an operating system developed for mobile devices; watchOS is a smart watch operating system; OS X El Capitan is a dedicated operating system developed for Mac computers; tvOS is a smart TV operating system. It supports multiple encoding formats, XPath analysis, Well-formed and valid verification, etc. CVE-ID CVE-2016-1847 : Tongbo Luo and Bo Qu of Palo Alto Networks

    Installation note:

    Instructions on how to update your Apple Watch software are available at https://support.apple.com/en-us/HT204641

    To check the version on your Apple Watch, open the Apple Watch app on your iPhone and select "My Watch > General > About". -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: libxml2 security update Advisory ID: RHSA-2016:1292-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:1292 Issue date: 2016-06-23 CVE Names: CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4447 CVE-2016-4448 CVE-2016-4449 =====================================================================

    1. Summary:

    An update for libxml2 is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.

    Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

    1. Description:

    The libxml2 library is a development toolbox providing the implementation of various XML standards.

    Security Fix(es):

    A heap-based buffer overflow flaw was found in the way libxml2 parsed certain crafted XML input. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or execute arbitrary code with the permissions of the user running the application. (CVE-2016-1834, CVE-2016-1840)

    Multiple denial of service flaws were found in libxml2. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, could cause that application to crash. (CVE-2016-1762, CVE-2016-1833, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447, CVE-2016-4448, CVE-2016-4449)

    1. Solution:

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    For the update to take effect, all applications linked to the libxml2 library must be restarted, or the system rebooted.

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1319829 - CVE-2016-3627 libxml2: stack exhaustion while parsing xml files in recovery mode 1332443 - CVE-2016-3705 libxml2: stack overflow before detecting invalid XML file 1338682 - CVE-2016-1833 libxml2: Heap-based buffer overread in htmlCurrentChar 1338686 - CVE-2016-4447 libxml2: Heap-based buffer underreads due to xmlParseName 1338691 - CVE-2016-1835 libxml2: Heap use-after-free in xmlSAX2AttributeNs 1338696 - CVE-2016-1837 libxml2: Heap use-after-free in htmlPArsePubidLiteral and htmlParseSystemiteral 1338700 - CVE-2016-4448 libxml2: Format string vulnerability 1338701 - CVE-2016-4449 libxml2: Inappropriate fetch of entities content 1338702 - CVE-2016-1836 libxml2: Heap use-after-free in xmlDictComputeFastKey 1338703 - CVE-2016-1839 libxml2: Heap-based buffer overread in xmlDictAddString 1338705 - CVE-2016-1838 libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal 1338706 - CVE-2016-1840 libxml2: Heap-buffer-overflow in xmlFAParserPosCharGroup 1338708 - CVE-2016-1834 libxml2: Heap-buffer-overflow in xmlStrncat 1338711 - CVE-2016-1762 libxml2: Heap-based buffer-overread in xmlNextChar

    1. Package List:

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    i386: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-python-2.7.6-21.el6_8.1.i686.rpm

    ppc64: libxml2-2.7.6-21.el6_8.1.ppc.rpm libxml2-2.7.6-21.el6_8.1.ppc64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.ppc.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm libxml2-devel-2.7.6-21.el6_8.1.ppc.rpm libxml2-devel-2.7.6-21.el6_8.1.ppc64.rpm libxml2-python-2.7.6-21.el6_8.1.ppc64.rpm

    s390x: libxml2-2.7.6-21.el6_8.1.s390.rpm libxml2-2.7.6-21.el6_8.1.s390x.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.s390.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm libxml2-devel-2.7.6-21.el6_8.1.s390.rpm libxml2-devel-2.7.6-21.el6_8.1.s390x.rpm libxml2-python-2.7.6-21.el6_8.1.s390x.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    i386: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-static-2.7.6-21.el6_8.1.i686.rpm

    ppc64: libxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm libxml2-static-2.7.6-21.el6_8.1.ppc64.rpm

    s390x: libxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm libxml2-static-2.7.6-21.el6_8.1.s390x.rpm

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: libxml2-2.7.6-21.el6_8.1.src.rpm

    i386: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-python-2.7.6-21.el6_8.1.i686.rpm

    x86_64: libxml2-2.7.6-21.el6_8.1.i686.rpm libxml2-2.7.6-21.el6_8.1.x86_64.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-devel-2.7.6-21.el6_8.1.i686.rpm libxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm libxml2-python-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    i386: libxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm libxml2-static-2.7.6-21.el6_8.1.i686.rpm

    x86_64: libxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm libxml2-static-2.7.6-21.el6_8.1.x86_64.rpm

    Red Hat Enterprise Linux Client (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Client Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux ComputeNode Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    ppc64: libxml2-2.9.1-6.el7_2.3.ppc.rpm libxml2-2.9.1-6.el7_2.3.ppc64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc64.rpm libxml2-python-2.9.1-6.el7_2.3.ppc64.rpm

    ppc64le: libxml2-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-devel-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-python-2.9.1-6.el7_2.3.ppc64le.rpm

    s390x: libxml2-2.9.1-6.el7_2.3.s390.rpm libxml2-2.9.1-6.el7_2.3.s390x.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm libxml2-devel-2.9.1-6.el7_2.3.s390.rpm libxml2-devel-2.9.1-6.el7_2.3.s390x.rpm libxml2-python-2.9.1-6.el7_2.3.s390x.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 7):

    ppc64: libxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm libxml2-static-2.9.1-6.el7_2.3.ppc.rpm libxml2-static-2.9.1-6.el7_2.3.ppc64.rpm

    ppc64le: libxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm libxml2-static-2.9.1-6.el7_2.3.ppc64le.rpm

    s390x: libxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm libxml2-static-2.9.1-6.el7_2.3.s390.rpm libxml2-static-2.9.1-6.el7_2.3.s390x.rpm

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 7):

    Source: libxml2-2.9.1-6.el7_2.3.src.rpm

    x86_64: libxml2-2.9.1-6.el7_2.3.i686.rpm libxml2-2.9.1-6.el7_2.3.x86_64.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-devel-2.9.1-6.el7_2.3.i686.rpm libxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 7):

    x86_64: libxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm libxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm libxml2-static-2.9.1-6.el7_2.3.i686.rpm libxml2-static-2.9.1-6.el7_2.3.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2016-1762 https://access.redhat.com/security/cve/CVE-2016-1833 https://access.redhat.com/security/cve/CVE-2016-1834 https://access.redhat.com/security/cve/CVE-2016-1835 https://access.redhat.com/security/cve/CVE-2016-1836 https://access.redhat.com/security/cve/CVE-2016-1837 https://access.redhat.com/security/cve/CVE-2016-1838 https://access.redhat.com/security/cve/CVE-2016-1839 https://access.redhat.com/security/cve/CVE-2016-1840 https://access.redhat.com/security/cve/CVE-2016-3627 https://access.redhat.com/security/cve/CVE-2016-3705 https://access.redhat.com/security/cve/CVE-2016-4447 https://access.redhat.com/security/cve/CVE-2016-4448 https://access.redhat.com/security/cve/CVE-2016-4449 https://access.redhat.com/security/updates/classification/#important

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFXa8B8XlSAg2UNWIIRAh9ZAJ99xgPhOaIopIxmynm+vlDcmw4jFACeLvTm ZsVLEgJAF0Zt6xZVzqvVW7U= =fREV -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512

    APPLE-SA-2016-05-16-2 iOS 9.3.2

    iOS 9.3.2 is now available and addresses the following:

    Accessibility Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to determine kernel memory layout Description: A buffer overflow was addressed through improved size validation. CVE-ID CVE-2016-1790 : Rapelly Akhil

    CFNetwork Proxies Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An attacker in a privileged network position may be able to leak sensitive user information Description: An information leak existed in the handling of HTTP and HTTPS requests. This issue was addressed through improved URL handling. CVE-ID CVE-2016-1801 : Alex Chapman and Paul Stone of Context Information Security

    CommonCrypto Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A malicious application may be able to leak sensitive user information Description: An issue existed in the handling of return values in CCCrypt. This issue was addressed through improved key length management. CVE-ID CVE-2016-1802 : Klaus Rodewig

    CoreCapture Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A null pointer dereference was addressed through improved validation. CVE-ID CVE-2016-1803 : Ian Beer of Google Project Zero, daybreaker working with Trend Micro’s Zero Day Initiative

    Disk Images Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A local attacker may be able to read kernel memory Description: A race condition was addressed through improved locking. CVE-ID CVE-2016-1807 : Ian Beer of Google Project Zero

    Disk Images Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue existed in the parsing of disk images. This issue was addressed through improved memory handling. CVE-ID CVE-2016-1808 : Moony Li (@Flyic) and Jack Tang (@jacktang310) of Trend Micro

    ImageIO Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing a maliciously crafted image may lead to a denial of service Description: A null pointer dereference was addressed through improved validation. CVE-ID CVE-2016-1811 : Lander Brandt (@landaire)

    IOAcceleratorFamily Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1817 : Moony Li (@Flyic) and Jack Tang (@jacktang310) of Trend Micro working with Trend Micro's Zero Day Initiative CVE-2016-1818 : Juwei Lin of TrendMicro CVE-2016-1819 : Ian Beer of Google Project Zero

    IOAcceleratorFamily Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to cause a denial of service Description: A null pointer dereference was addressed through improved locking. CVE-ID CVE-2016-1814 : Juwei Lin of TrendMicro

    IOAcceleratorFamily Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A null pointer dereference was addressed through improved validation. CVE-ID CVE-2016-1813 : Ian Beer of Google Project Zero

    IOHIDFamily Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed through improved memory handling. CVE-ID CVE-2016-1823 : Ian Beer of Google Project Zero CVE-2016-1824 : Marco Grassi (@marcograss) of KeenLab (@keen_lab), Tencent

    Kernel Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1827 : Brandon Azad CVE-2016-1828 : Brandon Azad CVE-2016-1829 : CESG CVE-2016-1830 : Brandon Azad CVE-2016-1831 : Brandon Azad

    libc Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A local attacker may be able to cause unexpected application termination or arbitrary code execution Description: A memory corruption issue was addressed through improved input validation. CVE-ID CVE-2016-1832 : Karl Williamson

    libxml2 Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1833 : Mateusz Jurczyk CVE-2016-1834 : Apple CVE-2016-1835 : Wei Lei and Liu Yang of Nanyang Technological University CVE-2016-1836 : Wei Lei and Liu Yang of Nanyang Technological University CVE-2016-1837 : Wei Lei and Liu Yang of Nanyang Technological University CVE-2016-1838 : Mateusz Jurczyk CVE-2016-1839 : Mateusz Jurczyk CVE-2016-1840 : Kostya Serebryany

    libxslt Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a maliciously crafted website may lead to arbitrary code execution Description: A memory corruption issue was addressed through improved memory handling. CVE-ID CVE-2016-1841 : Sebastian Apelt

    MapKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: An attacker in a privileged network position may be able to leak sensitive user information Description: Shared links were sent with HTTP rather than HTTPS. This was addressed by enabling HTTPS for shared links. CVE-ID CVE-2016-1842 : Richard Shupak (https://www.linkedin.com/in/rshupak)

    OpenGL Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1847 : Tongbo Luo and Bo Qu of Palo Alto Networks

    Safari Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A user may be unable to fully delete browsing history Description: "Clear History and Website Data" did not clear the history. The issue was addressed through improved data deletion. CVE-ID CVE-2016-1849 : Adham Ghrayeb

    Siri Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: A person with physical access to an iOS device may be able to use Siri to access contacts and photos from the the lock screen Description: A state management issue existed when accessing Siri results on the lock screen. This issue was addressed by disabling data detectors in Twitter results when the device is locked. CVE-ID CVE-2016-1852 : videosdebarraquito

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a malicious website may disclose data from another website Description: An insufficient taint tracking issue in the parsing of svg images was addressed through improved taint tracking. CVE-ID CVE-2016-1858 : an anonymous researcher

    WebKit Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a maliciously crafted website may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1854 : Anonymous working with Trend Micro's Zero Day Initiative CVE-2016-1855 : Tongbo Luo and Bo Qu of Palo Alto Networks CVE-2016-1856 : lokihardt working with Trend Micro's Zero Day Initiative CVE-2016-1857 : Jeonghoon Shin@A.D.D, Liang Chen, Zhen Feng, wushi of KeenLab, Tencent working with Trend Micro's Zero Day Initiative

    WebKit Canvas Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later Impact: Visiting a maliciously crafted website may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1859 : Liang Chen, wushi of KeenLab, Tencent working with Trend Micro's Zero Day Initiative

    Installation note:

    This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from www.apple.com/itunes/

    iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device.

    The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device.

    To check that the iPhone, iPod touch, or iPad has been updated:

    • Navigate to Settings
    • Select General
    • Select About. The version after applying this update will be "9.3.2". - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201701-37

                                           https://security.gentoo.org/
    

    Severity: Normal Title: libxml2: Multiple vulnerabilities Date: January 16, 2017 Bugs: #564776, #566374, #572878, #573820, #577998, #582538, #582540, #583888, #589816, #597112, #597114, #597116 ID: 201701-37


    Synopsis

    Multiple vulnerabilities have been found in libxml2, the worst of which could lead to the execution of arbitrary code.

    Background

    libxml2 is the XML (eXtended Markup Language) C parser and toolkit initially developed for the Gnome project.

    Affected packages

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
    

    1 dev-libs/libxml2 < 2.9.4-r1 >= 2.9.4-r1

    Description

    Multiple vulnerabilities have been discovered in libxml2. Please review the CVE identifiers referenced below for details.

    Workaround

    There is no known workaround at this time.

    Resolution

    All libxml2 users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=dev-libs/libxml2-2.9.4-r1"

    References

    [ 1 ] CVE-2015-1819 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1819 [ 2 ] CVE-2015-5312 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5312 [ 3 ] CVE-2015-7497 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7497 [ 4 ] CVE-2015-7498 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7498 [ 5 ] CVE-2015-7499 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7499 [ 6 ] CVE-2015-7500 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7500 [ 7 ] CVE-2015-7941 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7941 [ 8 ] CVE-2015-7942 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7942 [ 9 ] CVE-2015-8035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8035 [ 10 ] CVE-2015-8242 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8242 [ 11 ] CVE-2015-8806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8806 [ 12 ] CVE-2016-1836 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1836 [ 13 ] CVE-2016-1838 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1838 [ 14 ] CVE-2016-1839 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1839 [ 15 ] CVE-2016-1840 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1840 [ 16 ] CVE-2016-2073 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2073 [ 17 ] CVE-2016-3627 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3627 [ 18 ] CVE-2016-3705 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3705 [ 19 ] CVE-2016-4483 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4483 [ 20 ] CVE-2016-4658 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4658 [ 21 ] CVE-2016-5131 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5131

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    https://security.gentoo.org/glsa/201701-37

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2017 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5

    . From: Marc Deslauriers marc.deslauriers@canonical.com Reply-To: Ubuntu Security security@ubuntu.com To: ubuntu-security-announce@lists.ubuntu.com Message-ID: 5755B7E3.5040103@canonical.com Subject: [USN-2994-1] libxml2 vulnerabilities

    ============================================================================ Ubuntu Security Notice USN-2994-1 June 06, 2016

    libxml2 vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 16.04 LTS
    • Ubuntu 15.10
    • Ubuntu 14.04 LTS
    • Ubuntu 12.04 LTS

    Summary:

    Several security issues were fixed in libxml2. (CVE-2015-8806, CVE-2016-2073, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447)

    It was discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1762, CVE-2016-1834)

    Mateusz Jurczyk discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1833, CVE-2016-1838, CVE-2016-1839)

    Wei Lei and Liu Yang discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1835, CVE-2016-1837)

    Wei Lei and Liu Yang discovered that libxml2 incorrectly handled certain malformed documents. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 15.10 and Ubuntu 16.04 LTS. (CVE-2016-1836)

    Kostya Serebryany discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-1840)

    It was discovered that libxml2 would load certain XML external entities. (CVE-2016-4449)

    Gustavo Grieco discovered that libxml2 incorrectly handled certain malformed documents. (CVE-2016-4483)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 16.04 LTS: libxml2 2.9.3+dfsg1-1ubuntu0.1

    Ubuntu 15.10: libxml2 2.9.2+zdfsg1-4ubuntu0.4

    Ubuntu 14.04 LTS: libxml2 2.9.1+dfsg1-3ubuntu4.8

    Ubuntu 12.04 LTS: libxml2 2.7.8.dfsg-5.1ubuntu4.15

    After a standard system update you need to reboot your computer to make all the necessary changes.

    For the stable distribution (jessie), these problems have been fixed in version 2.9.1+dfsg1-5+deb8u2. Description:

    This release of Red Hat JBoss Core Services httpd 2.4.23 serves as a replacement for JBoss Core Services Apache HTTP Server 2.4.6.

    Security Fix(es):

    • This update fixes several flaws in OpenSSL. (CVE-2016-1762, CVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483)

    • This update fixes three flaws in curl. (CVE-2016-5419, CVE-2016-5420, CVE-2016-7141)

    • This update fixes two flaws in httpd. (CVE-2016-4459, CVE-2016-8612)

    • A buffer overflow flaw when concatenating virtual host names and URIs was fixed in mod_jk. (CVE-2016-6808)

    • A memory leak flaw was fixed in expat. Upstream acknowledges Stephen Henson (OpenSSL development team) as the original reporter of CVE-2015-0286; Huzaifa Sidhpurwala (Red Hat), Hanno BAPck, and David Benjamin (Google) as the original reporters of CVE-2016-2108; Guido Vranken as the original reporter of CVE-2016-2105, CVE-2016-2106, CVE-2016-0797, CVE-2016-0799, and CVE-2016-2842; Juraj Somorovsky as the original reporter of CVE-2016-2107; Yuval Yarom (University of Adelaide and NICTA), Daniel Genkin (Technion and Tel Aviv University), and Nadia Heninger (University of Pennsylvania) as the original reporters of CVE-2016-0702; and Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.

    See the corresponding CVE pages linked to in the References section for more information about each of the flaws listed in this advisory. Solution:

    The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).

    After installing the updated packages, the httpd daemon will be restarted automatically. JIRA issues fixed (https://issues.jboss.org/):

    JBCS-50 - CVE-2012-1148 CVE-2012-0876 expat: various flaws [jbews-3.0.0] JBCS-95 - CVE-2014-3523 httpd: WinNT MPM denial of service

    6

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.5.2.10"
          },
          {
            "_id": null,
            "model": "iphone os",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "15.10"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.6.0.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.5.0.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "10.11.5"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "libxml2",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "xmlsoft",
            "version": "2.9.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "7.6.2.3"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "16.04"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "2.2.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.211"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "7"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.0"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.1.3"
          },
          {
            "_id": null,
            "model": "advanced secure gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.1.1.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.410"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.24"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.219"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.10"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.3.1"
          },
          {
            "_id": null,
            "model": "junos space 15.1f2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.22"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "10"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.2"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.36"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.6.3"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.4"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.10"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "junos space 15.1r2.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.2.2.12"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "authconnector",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.44"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "email gateway 7.6.2h968406",
            "scope": null,
            "trust": 0.3,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.46"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.26"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.405"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.1.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0.0.163"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "vm server for",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "x863.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.72"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.42"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "30"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8"
          },
          {
            "_id": null,
            "model": "junos space 15.2r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.0.2.20"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.4.1.10"
          },
          {
            "_id": null,
            "model": "watch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.8"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.08"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.4"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.08"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.213"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.22"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5.2"
          },
          {
            "_id": null,
            "model": "industrial control system protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.404"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.413"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fixpac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.6"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.7.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.3"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.401"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.8"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.4.1"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "email gateway 7.6.405h1165239",
            "scope": null,
            "trust": 0.3,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "50"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5.1.42"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.0.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.32"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.11"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.3"
          },
          {
            "_id": null,
            "model": "norman network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.34"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "13.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.0"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.3.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.412"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5.1"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "junos space 15.2r2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.21"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry jre update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.35"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.33"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.31"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.218"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.10"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.411"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.1.8"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.3.2"
          },
          {
            "_id": null,
            "model": "junos space 14.1r1.9",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.214"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.19"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.3.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.2.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fixpac",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.403"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.113"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.4"
          },
          {
            "_id": null,
            "model": "esignal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "esignal",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.11"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.1.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.110"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "junos space 16.1r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.110"
          },
          {
            "_id": null,
            "model": "proxysg",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "mq appliance m2001",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.5.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.1.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.21"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "tv",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.6"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.4"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "mq appliance m2000",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris sru11.6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "11.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.7"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.3.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "7.0.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.415"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.1.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.09"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.4"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "ipad",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.6"
          },
          {
            "_id": null,
            "model": "security identity governance and intelligence",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2.0.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.0.1"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.12"
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.01"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.10.5"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.4.0.80"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.8"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.09"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "mac os security update",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x2016-0030"
          },
          {
            "_id": null,
            "model": "vm server for",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "x863.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.6.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.1.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.11.5"
          },
          {
            "_id": null,
            "model": "smartcloud entry jre update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.34"
          },
          {
            "_id": null,
            "model": "junos space 14.1r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.3"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.9.5"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "40"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry fix pack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.010"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.4.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry jre update",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.55"
          },
          {
            "_id": null,
            "model": "director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.2.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "8.4.1"
          },
          {
            "_id": null,
            "model": "mac os security update",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x2016"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.2.9"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.5.2.9"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.2.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "industrial control systems network scanner",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.4.0.55"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.400"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "1.3"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.0.5"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "smartcloud entry fixpack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.2.0.415"
          },
          {
            "_id": null,
            "model": "proxysg",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0.3"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.8"
          },
          {
            "_id": null,
            "model": "watchos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.9"
          },
          {
            "_id": null,
            "model": "security network protection",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.1.3"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.406-3402.103"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "12.3.1"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "4.7"
          },
          {
            "_id": null,
            "model": "junos space",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "11.2"
          },
          {
            "_id": null,
            "model": "smartcloud entry",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "3.1.0.4"
          },
          {
            "_id": null,
            "model": "itunes",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "10.6.1.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "email gateway 7.6.405h1157986",
            "scope": null,
            "trust": 0.3,
            "vendor": "mcafee",
            "version": null
          },
          {
            "_id": null,
            "model": "smartcloud entry appliance fi",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.3.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "3.2.2"
          },
          {
            "_id": null,
            "model": "security analytics platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecoat",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "email gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mcafee",
            "version": "7.6.402"
          },
          {
            "_id": null,
            "model": "tvos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "9.0"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "90691"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1839"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Marco Grassi of KeenLab, Tencent, Brandon Azad, CESG, Karl Williamson, Mateusz Jurczyk, Wei Lei and Liu Yang of Nanyang Technological University, Kostya Serebryany, Apple, Sebastian Apelt and Tongbo Luo and Bo Qu of Palo Alto Networks.",
        "sources": [
          {
            "db": "BID",
            "id": "90691"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2016-1839",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2016-1839",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-90658",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 1.8,
                "id": "CVE-2016-1839",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2016-1839",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201605-479",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-90658",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2016-1839",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1839"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document. Apple Mac OS X, watchOS, iOS, and tvOS are prone to multiple security vulnerabilities. \nAttackers can exploit these issues to execute arbitrary code and bypass security restrictions. Failed exploit attempts may result  in a denial-of-service condition. \nVersions prior to iOS 9.3.2, watchOS 2.2.1, Mac OS X 10.11.5, and tvOS 9.2.1 are vulnerable. in the United States. Apple iOS is an operating system developed for mobile devices; watchOS is a smart watch operating system; OS X El Capitan is a dedicated operating system developed for Mac computers; tvOS is a smart TV operating system. It supports multiple encoding formats, XPath analysis, Well-formed and valid verification, etc. \nCVE-ID\nCVE-2016-1847 : Tongbo Luo and Bo Qu of Palo Alto Networks\n\nInstallation note:\n\nInstructions on how to update your Apple Watch software are\navailable at https://support.apple.com/en-us/HT204641\n\nTo check the version on your Apple Watch, open the Apple Watch app\non your iPhone and select \"My Watch \u003e General \u003e About\". -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: libxml2 security update\nAdvisory ID:       RHSA-2016:1292-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2016:1292\nIssue date:        2016-06-23\nCVE Names:         CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 \n                   CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 \n                   CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 \n                   CVE-2016-3627 CVE-2016-3705 CVE-2016-4447 \n                   CVE-2016-4448 CVE-2016-4449 \n=====================================================================\n\n1. Summary:\n\nAn update for libxml2 is now available for Red Hat Enterprise Linux 6 and\nRed Hat Enterprise Linux 7. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client (v. 7) - x86_64\nRed Hat Enterprise Linux Client Optional (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode (v. 7) - x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. Description:\n\nThe libxml2 library is a development toolbox providing the implementation\nof various XML standards. \n\nSecurity Fix(es):\n\nA heap-based buffer overflow flaw was found in the way libxml2 parsed\ncertain crafted XML input. A remote attacker could provide a specially\ncrafted XML file that, when opened in an application linked against\nlibxml2, would cause the application to crash or execute arbitrary code\nwith the permissions of the user running the application. (CVE-2016-1834,\nCVE-2016-1840)\n\nMultiple denial of service flaws were found in libxml2. A remote attacker\ncould provide a specially crafted XML file that, when processed by an\napplication using libxml2, could cause that application to crash. \n(CVE-2016-1762, CVE-2016-1833, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837,\nCVE-2016-1838, CVE-2016-1839, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447,\nCVE-2016-4448, CVE-2016-4449)\n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all applications linked to the libxml2\nlibrary must be restarted, or the system rebooted. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1319829 - CVE-2016-3627 libxml2: stack exhaustion while parsing xml files in recovery mode\n1332443 - CVE-2016-3705 libxml2: stack overflow before detecting invalid XML file\n1338682 - CVE-2016-1833 libxml2: Heap-based buffer overread in htmlCurrentChar\n1338686 - CVE-2016-4447 libxml2: Heap-based buffer underreads due to xmlParseName\n1338691 - CVE-2016-1835 libxml2: Heap use-after-free in xmlSAX2AttributeNs\n1338696 - CVE-2016-1837 libxml2: Heap use-after-free in htmlPArsePubidLiteral and htmlParseSystemiteral\n1338700 - CVE-2016-4448 libxml2: Format string vulnerability\n1338701 - CVE-2016-4449 libxml2: Inappropriate fetch of entities content\n1338702 - CVE-2016-1836 libxml2: Heap use-after-free in xmlDictComputeFastKey\n1338703 - CVE-2016-1839 libxml2: Heap-based buffer overread in xmlDictAddString\n1338705 - CVE-2016-1838 libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal\n1338706 - CVE-2016-1840 libxml2: Heap-buffer-overflow in xmlFAParserPosCharGroup\n1338708 - CVE-2016-1834 libxml2: Heap-buffer-overflow in xmlStrncat\n1338711 - CVE-2016-1762 libxml2: Heap-based buffer-overread in xmlNextChar\n\n6. Package List:\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\ni386:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-python-2.7.6-21.el6_8.1.i686.rpm\n\nppc64:\nlibxml2-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.ppc.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.ppc64.rpm\n\ns390x:\nlibxml2-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.s390.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-python-2.7.6-21.el6_8.1.s390x.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\ni386:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-static-2.7.6-21.el6_8.1.i686.rpm\n\nppc64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.ppc64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.ppc64.rpm\n\ns390x:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.s390x.rpm\nlibxml2-static-2.7.6-21.el6_8.1.s390x.rpm\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nlibxml2-2.7.6-21.el6_8.1.src.rpm\n\ni386:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-python-2.7.6-21.el6_8.1.i686.rpm\n\nx86_64:\nlibxml2-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-devel-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-python-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\ni386:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.i686.rpm\nlibxml2-static-2.7.6-21.el6_8.1.i686.rpm\n\nx86_64:\nlibxml2-debuginfo-2.7.6-21.el6_8.1.x86_64.rpm\nlibxml2-static-2.7.6-21.el6_8.1.x86_64.rpm\n\nRed Hat Enterprise Linux Client (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nppc64:\nlibxml2-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.ppc64.rpm\n\nppc64le:\nlibxml2-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-python-2.9.1-6.el7_2.3.ppc64le.rpm\n\ns390x:\nlibxml2-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-python-2.9.1-6.el7_2.3.s390x.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc64.rpm\n\nppc64le:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.ppc64le.rpm\nlibxml2-static-2.9.1-6.el7_2.3.ppc64le.rpm\n\ns390x:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.s390x.rpm\nlibxml2-static-2.9.1-6.el7_2.3.s390.rpm\nlibxml2-static-2.9.1-6.el7_2.3.s390x.rpm\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nlibxml2-2.9.1-6.el7_2.3.src.rpm\n\nx86_64:\nlibxml2-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-devel-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-python-2.9.1-6.el7_2.3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nlibxml2-debuginfo-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-debuginfo-2.9.1-6.el7_2.3.x86_64.rpm\nlibxml2-static-2.9.1-6.el7_2.3.i686.rpm\nlibxml2-static-2.9.1-6.el7_2.3.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2016-1762\nhttps://access.redhat.com/security/cve/CVE-2016-1833\nhttps://access.redhat.com/security/cve/CVE-2016-1834\nhttps://access.redhat.com/security/cve/CVE-2016-1835\nhttps://access.redhat.com/security/cve/CVE-2016-1836\nhttps://access.redhat.com/security/cve/CVE-2016-1837\nhttps://access.redhat.com/security/cve/CVE-2016-1838\nhttps://access.redhat.com/security/cve/CVE-2016-1839\nhttps://access.redhat.com/security/cve/CVE-2016-1840\nhttps://access.redhat.com/security/cve/CVE-2016-3627\nhttps://access.redhat.com/security/cve/CVE-2016-3705\nhttps://access.redhat.com/security/cve/CVE-2016-4447\nhttps://access.redhat.com/security/cve/CVE-2016-4448\nhttps://access.redhat.com/security/cve/CVE-2016-4449\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2016 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFXa8B8XlSAg2UNWIIRAh9ZAJ99xgPhOaIopIxmynm+vlDcmw4jFACeLvTm\nZsVLEgJAF0Zt6xZVzqvVW7U=\n=fREV\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\nAPPLE-SA-2016-05-16-2 iOS 9.3.2\n\niOS 9.3.2 is now available and addresses the following:\n\nAccessibility\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to determine kernel memory layout\nDescription:  A buffer overflow was addressed through improved size\nvalidation. \nCVE-ID\nCVE-2016-1790 : Rapelly Akhil\n\nCFNetwork Proxies\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An attacker in a privileged network position may be able to\nleak sensitive user information\nDescription:  An information leak existed in the handling of HTTP and\nHTTPS requests. This issue was addressed through improved URL\nhandling. \nCVE-ID\nCVE-2016-1801 : Alex Chapman and Paul Stone of Context Information\nSecurity\n\nCommonCrypto\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A malicious application may be able to leak sensitive user\ninformation\nDescription:  An issue existed in the handling of return values in\nCCCrypt. This issue was addressed through improved key length\nmanagement. \nCVE-ID\nCVE-2016-1802 : Klaus Rodewig\n\nCoreCapture\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A null pointer dereference was addressed through\nimproved validation. \nCVE-ID\nCVE-2016-1803 : Ian Beer of Google Project Zero, daybreaker working\nwith Trend Micro\u2019s Zero Day Initiative\n\nDisk Images\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A local attacker may be able to read kernel memory\nDescription:  A race condition was addressed through improved\nlocking. \nCVE-ID\nCVE-2016-1807 : Ian Beer of Google Project Zero\n\nDisk Images\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue existed in the parsing of\ndisk images. This issue was addressed through improved memory\nhandling. \nCVE-ID\nCVE-2016-1808 : Moony Li (@Flyic) and Jack Tang (@jacktang310) of\nTrend Micro\n\nImageIO\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing a maliciously crafted image may lead to a denial\nof service\nDescription:  A null pointer dereference was addressed through\nimproved validation. \nCVE-ID\nCVE-2016-1811 : Lander Brandt (@landaire)\n\nIOAcceleratorFamily\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1817 : Moony Li (@Flyic) and Jack Tang (@jacktang310) of\nTrend Micro working with Trend Micro\u0027s Zero Day Initiative\nCVE-2016-1818 : Juwei Lin of TrendMicro\nCVE-2016-1819 : Ian Beer of Google Project Zero\n\nIOAcceleratorFamily\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to cause a denial of service\nDescription:  A null pointer dereference was addressed through\nimproved locking. \nCVE-ID\nCVE-2016-1814 : Juwei Lin of TrendMicro\n\nIOAcceleratorFamily\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A null pointer dereference was addressed through\nimproved validation. \nCVE-ID\nCVE-2016-1813 : Ian Beer of Google Project Zero\n\nIOHIDFamily\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  A memory corruption issue was addressed through\nimproved memory handling. \nCVE-ID\nCVE-2016-1823 : Ian Beer of Google Project Zero\nCVE-2016-1824 : Marco Grassi (@marcograss) of KeenLab (@keen_lab),\nTencent\n\nKernel\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An application may be able to execute arbitrary code with\nkernel privileges\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1827 : Brandon Azad\nCVE-2016-1828 : Brandon Azad\nCVE-2016-1829 : CESG\nCVE-2016-1830 : Brandon Azad\nCVE-2016-1831 : Brandon Azad\n\nlibc\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A local attacker may be able to cause unexpected application\ntermination or arbitrary code execution\nDescription:  A memory corruption issue was addressed through\nimproved input validation. \nCVE-ID\nCVE-2016-1832 : Karl Williamson\n\nlibxml2\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing maliciously crafted XML may lead to an unexpected\napplication termination or arbitrary code execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1833 : Mateusz Jurczyk\nCVE-2016-1834 : Apple\nCVE-2016-1835 : Wei Lei and Liu Yang of Nanyang Technological\nUniversity\nCVE-2016-1836 : Wei Lei and Liu Yang of Nanyang Technological\nUniversity\nCVE-2016-1837 : Wei Lei and Liu Yang of Nanyang Technological\nUniversity\nCVE-2016-1838 : Mateusz Jurczyk\nCVE-2016-1839 : Mateusz Jurczyk\nCVE-2016-1840 : Kostya Serebryany\n\nlibxslt\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a maliciously crafted website may lead to arbitrary\ncode execution\nDescription:  A memory corruption issue was addressed through\nimproved memory handling. \nCVE-ID\nCVE-2016-1841 : Sebastian Apelt\n\nMapKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  An attacker in a privileged network position may be able to\nleak sensitive user information\nDescription:  Shared links were sent with HTTP rather than HTTPS. \nThis was addressed by enabling HTTPS for shared links. \nCVE-ID\nCVE-2016-1842 : Richard Shupak (https://www.linkedin.com/in/rshupak)\n\nOpenGL\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Processing maliciously crafted web content may lead to\narbitrary code execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1847 : Tongbo Luo and Bo Qu of Palo Alto Networks\n\nSafari\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A user may be unable to fully delete browsing history\nDescription:  \"Clear History and Website Data\" did not clear the\nhistory. The issue was addressed through improved data deletion. \nCVE-ID\nCVE-2016-1849 : Adham Ghrayeb\n\nSiri\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  A person with physical access to an iOS device may be able\nto use Siri to access contacts and photos from the the lock screen\nDescription:  A state management issue existed when accessing Siri\nresults on the lock screen. This issue was addressed by disabling\ndata detectors in Twitter results when the device is locked. \nCVE-ID\nCVE-2016-1852 : videosdebarraquito\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a malicious website may disclose data from another\nwebsite\nDescription:  An insufficient taint tracking issue in the parsing of\nsvg images was addressed through improved taint tracking. \nCVE-ID\nCVE-2016-1858 : an anonymous researcher\n\nWebKit\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a maliciously crafted website may lead to arbitrary\ncode execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1854 : Anonymous working with Trend Micro\u0027s Zero Day\nInitiative\nCVE-2016-1855 : Tongbo Luo and Bo Qu of Palo Alto Networks\nCVE-2016-1856 : lokihardt working with Trend Micro\u0027s Zero Day\nInitiative\nCVE-2016-1857 : Jeonghoon Shin@A.D.D, Liang Chen, Zhen Feng, wushi of\nKeenLab, Tencent working with Trend Micro\u0027s Zero Day Initiative\n\nWebKit Canvas\nAvailable for:  iPhone 4s and later,\niPod touch (5th generation) and later, iPad 2 and later\nImpact:  Visiting a maliciously crafted website may lead to arbitrary\ncode execution\nDescription:  Multiple memory corruption issues were addressed\nthrough improved memory handling. \nCVE-ID\nCVE-2016-1859 : Liang Chen, wushi of KeenLab, Tencent working with\nTrend Micro\u0027s Zero Day Initiative\n\nInstallation note:\n\nThis update is available through iTunes and Software Update on your\niOS device, and will not appear in your computer\u0027s Software Update\napplication, or in the Apple Downloads site. Make sure you have an\nInternet connection and have installed the latest version of iTunes\nfrom www.apple.com/itunes/\n\niTunes and Software Update on the device will automatically check\nApple\u0027s update server on its weekly schedule. When an update is\ndetected, it is downloaded and the option to be installed is\npresented to the user when the iOS device is docked. We recommend\napplying the update immediately if possible. Selecting Don\u0027t Install\nwill present the option the next time you connect your iOS device. \n\nThe automatic update process may take up to a week depending on the\nday that iTunes or the device checks for updates. You may manually\nobtain the update via the Check for Updates button within iTunes, or\nthe Software Update on your device. \n\nTo check that the iPhone, iPod touch, or iPad has been updated:\n\n* Navigate to Settings\n* Select General\n* Select About. The version after applying this update\nwill be \"9.3.2\". - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201701-37\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Normal\n    Title: libxml2: Multiple vulnerabilities\n     Date: January 16, 2017\n     Bugs: #564776, #566374, #572878, #573820, #577998, #582538,\n           #582540, #583888, #589816, #597112, #597114, #597116\n       ID: 201701-37\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in libxml2, the worst of which\ncould lead to the execution of arbitrary code. \n\nBackground\n==========\n\nlibxml2 is the XML (eXtended Markup Language) C parser and toolkit\ninitially developed for the Gnome project. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package              /     Vulnerable     /            Unaffected\n    -------------------------------------------------------------------\n  1  dev-libs/libxml2            \u003c 2.9.4-r1               \u003e= 2.9.4-r1\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in libxml2. Please review\nthe CVE identifiers referenced below for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll libxml2 users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=dev-libs/libxml2-2.9.4-r1\"\n\nReferences\n==========\n\n[  1 ] CVE-2015-1819\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1819\n[  2 ] CVE-2015-5312\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5312\n[  3 ] CVE-2015-7497\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7497\n[  4 ] CVE-2015-7498\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7498\n[  5 ] CVE-2015-7499\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7499\n[  6 ] CVE-2015-7500\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7500\n[  7 ] CVE-2015-7941\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7941\n[  8 ] CVE-2015-7942\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7942\n[  9 ] CVE-2015-8035\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8035\n[ 10 ] CVE-2015-8242\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8242\n[ 11 ] CVE-2015-8806\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8806\n[ 12 ] CVE-2016-1836\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1836\n[ 13 ] CVE-2016-1838\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1838\n[ 14 ] CVE-2016-1839\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1839\n[ 15 ] CVE-2016-1840\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1840\n[ 16 ] CVE-2016-2073\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2073\n[ 17 ] CVE-2016-3627\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3627\n[ 18 ] CVE-2016-3705\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3705\n[ 19 ] CVE-2016-4483\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4483\n[ 20 ] CVE-2016-4658\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4658\n[ 21 ] CVE-2016-5131\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5131\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/201701-37\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2017 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n\n. From: Marc Deslauriers \u003cmarc.deslauriers@canonical.com\u003e\nReply-To: Ubuntu Security \u003csecurity@ubuntu.com\u003e\nTo: ubuntu-security-announce@lists.ubuntu.com\nMessage-ID: \u003c5755B7E3.5040103@canonical.com\u003e\nSubject: [USN-2994-1] libxml2 vulnerabilities\n\n\n\n\n============================================================================\nUbuntu Security Notice USN-2994-1\nJune 06, 2016\n\nlibxml2 vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 16.04 LTS\n- Ubuntu 15.10\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in libxml2. (CVE-2015-8806, CVE-2016-2073,\nCVE-2016-3627, CVE-2016-3705, CVE-2016-4447)\n\nIt was discovered that libxml2 incorrectly handled certain malformed\ndocuments. \n(CVE-2016-1762, CVE-2016-1834)\n\nMateusz Jurczyk discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-1833, CVE-2016-1838, CVE-2016-1839)\n\nWei Lei and Liu Yang discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-1835, CVE-2016-1837)\n\nWei Lei and Liu Yang discovered that libxml2 incorrectly handled certain\nmalformed documents. This issue only applied to Ubuntu 14.04 LTS, Ubuntu 15.10 and\nUbuntu 16.04 LTS. (CVE-2016-1836)\n\nKostya Serebryany discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-1840)\n\nIt was discovered that libxml2 would load certain XML external entities. (CVE-2016-4449)\n\nGustavo Grieco discovered that libxml2 incorrectly handled certain\nmalformed documents. (CVE-2016-4483)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 16.04 LTS:\n  libxml2                         2.9.3+dfsg1-1ubuntu0.1\n\nUbuntu 15.10:\n  libxml2                         2.9.2+zdfsg1-4ubuntu0.4\n\nUbuntu 14.04 LTS:\n  libxml2                         2.9.1+dfsg1-3ubuntu4.8\n\nUbuntu 12.04 LTS:\n  libxml2                         2.7.8.dfsg-5.1ubuntu4.15\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes. \n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 2.9.1+dfsg1-5+deb8u2. Description:\n\nThis release of Red Hat JBoss Core Services httpd 2.4.23 serves as a\nreplacement for JBoss Core Services Apache HTTP Server 2.4.6. \n\nSecurity Fix(es):\n\n* This update fixes several flaws in OpenSSL. (CVE-2016-1762,\nCVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837,\nCVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705,\nCVE-2016-4447, CVE-2016-4448, CVE-2016-4449, CVE-2016-4483)\n\n* This update fixes three flaws in curl. (CVE-2016-5419, CVE-2016-5420,\nCVE-2016-7141)\n\n* This update fixes two flaws in httpd. (CVE-2016-4459,\nCVE-2016-8612)\n\n* A buffer overflow flaw when concatenating virtual host names and URIs was\nfixed in mod_jk. (CVE-2016-6808)\n\n* A memory leak flaw was fixed in expat. Upstream acknowledges Stephen Henson (OpenSSL development team)\nas the original reporter of CVE-2015-0286; Huzaifa Sidhpurwala (Red Hat),\nHanno BAPck, and David Benjamin (Google) as the original reporters of\nCVE-2016-2108; Guido Vranken as the original reporter of CVE-2016-2105,\nCVE-2016-2106, CVE-2016-0797, CVE-2016-0799, and CVE-2016-2842; Juraj\nSomorovsky as the original reporter of CVE-2016-2107; Yuval Yarom\n(University of Adelaide and NICTA), Daniel Genkin (Technion and Tel Aviv\nUniversity), and Nadia Heninger (University of Pennsylvania) as the\noriginal reporters of CVE-2016-0702; and Adam Langley (Google/BoringSSL) as\nthe original reporter of CVE-2016-0705. \n\nSee the corresponding CVE pages linked to in the References section for\nmore information about each of the flaws listed in this advisory. Solution:\n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting Red Hat JBoss Web Server installation (including all applications\nand configuration files). \n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically. JIRA issues fixed (https://issues.jboss.org/):\n\nJBCS-50 - CVE-2012-1148 CVE-2012-0876 expat: various flaws [jbews-3.0.0]\nJBCS-95 - CVE-2014-3523 httpd: WinNT MPM denial of service\n\n6",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2016-1839"
          },
          {
            "db": "BID",
            "id": "90691"
          },
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839"
          },
          {
            "db": "PACKETSTORM",
            "id": "137080"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137076"
          },
          {
            "db": "PACKETSTORM",
            "id": "140533"
          },
          {
            "db": "PACKETSTORM",
            "id": "137335"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137075"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          }
        ],
        "trust": 2.07
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-90658",
            "trust": 0.1,
            "type": "unknown"
          },
          {
            "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=39491",
            "trust": 0.1,
            "type": "exploit"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2016-1839",
            "trust": 2.9
          },
          {
            "db": "MCAFEE",
            "id": "SB10170",
            "trust": 2.1
          },
          {
            "db": "BID",
            "id": "90691",
            "trust": 2.1
          },
          {
            "db": "SECTRACK",
            "id": "1035890",
            "trust": 1.8
          },
          {
            "db": "SECTRACK",
            "id": "1038623",
            "trust": 1.8
          },
          {
            "db": "TENABLE",
            "id": "TNS-2016-18",
            "trust": 1.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479",
            "trust": 0.7
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2023.3732",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2020.2340",
            "trust": 0.6
          },
          {
            "db": "JUNIPER",
            "id": "JSA10770",
            "trust": 0.3
          },
          {
            "db": "EXPLOIT-DB",
            "id": "39491",
            "trust": 0.2
          },
          {
            "db": "VULHUB",
            "id": "VHN-90658",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137080",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137613",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137076",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "140533",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137335",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137298",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "137075",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "140182",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839"
          },
          {
            "db": "BID",
            "id": "90691"
          },
          {
            "db": "PACKETSTORM",
            "id": "137080"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137076"
          },
          {
            "db": "PACKETSTORM",
            "id": "140533"
          },
          {
            "db": "PACKETSTORM",
            "id": "137335"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137075"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1839"
          }
        ]
      },
      "id": "VAR-201605-0466",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:10:45.904000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Apple iOS , watchOS , OS X El Capitan  and tvOS libxml2 Security vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=61793"
          },
          {
            "title": "Red Hat: CVE-2016-1839",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2016-1839"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2017-9050: heap-based buffer overflow in xmlDictAddString",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=fc4554d1a6b6ed0e3083518865fe08f5"
          },
          {
            "title": "Apple: watchOS 2.2.1",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=ee2628a4bdc6cee776cdd4b03ea8fc3f"
          },
          {
            "title": "Apple: tvOS 9.2.1",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=22a8333fe6ca4f25dfb12984728f42d0"
          },
          {
            "title": "Red Hat: Important: Red Hat JBoss Core Services Apache HTTP 2.4.23 Release",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20162957 - Security Advisory"
          },
          {
            "title": "Ubuntu Security Notice: libxml2 vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2994-1"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-2073: out-of-bounds read in htmlParseNameComplex()",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=e21c0505f8306f0416606e1a2ec5e18e"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: Heap-buffer overread in libxml2/dict.c",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1b5e8a6bfa7b3b48920376b728b6bbe2"
          },
          {
            "title": "Apple: iOS 9.3.2",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=d85657e8623d63e2afdb2287247cdad6"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-3627: stack exhaustion in libxml2 parsing xml files in recover mode",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=7ad6e7048d3904deff82dbbe81adf528"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-4483",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=17d0780fd9f0deb51d01d88ca9e90fe3"
          },
          {
            "title": "Debian CVElist Bug Report Logs: libxml2: CVE-2016-3705: stack overflow before detecting invalid XML file",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=ed475d816a8279c18b15a9aac8146ada"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2016-719",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2016-719"
          },
          {
            "title": "Apple: OS X El Capitan v10.11.5 and Security Update 2016-003",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=3c550201b398ce302f3a9adf27215fda"
          },
          {
            "title": "Oracle Solaris Third Party Bulletins: Oracle Solaris Third Party Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_solaris_third_party_bulletins\u0026qid=ac5af5dd99788925425f5747ec672707"
          },
          {
            "title": "Android Security Bulletins: Android Security Bulletin\u2014June 2017",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=android_security_bulletins\u0026qid=f9fbdf3aea1fd17035e18f77d6530ab1"
          },
          {
            "title": "Symantec Security Advisories: SA129 : Multiple libxml2 Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=4306b2beef409e7d3306d20a4621babf"
          },
          {
            "title": "Oracle VM Server for x86 Bulletins: Oracle VM Server for x86 Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_vm_server_for_x86_bulletins\u0026qid=6c15273f6bf4a785175f27073b98a1ce"
          },
          {
            "title": "Oracle Linux Bulletins: Oracle Linux Bulletin - July 2016",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_linux_bulletins\u0026qid=0bd8c924b56aac98dda0f5b45f425f38"
          },
          {
            "title": "Tenable Security Advisories: [R7] LCE 4.8.1 Fixes Multiple Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2016-18"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2016-1839"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-125",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-119",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1839"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.1,
            "url": "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html"
          },
          {
            "trust": 2.1,
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
          },
          {
            "trust": 2.1,
            "url": "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"
          },
          {
            "trust": 2.0,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10170"
          },
          {
            "trust": 1.9,
            "url": "https://security.gentoo.org/glsa/201701-37"
          },
          {
            "trust": 1.9,
            "url": "https://access.redhat.com/errata/rhsa-2016:1292"
          },
          {
            "trust": 1.9,
            "url": "http://rhn.redhat.com/errata/rhsa-2016-2957.html"
          },
          {
            "trust": 1.9,
            "url": "http://www.ubuntu.com/usn/usn-2994-1"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/may/msg00001.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/may/msg00002.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/may/msg00003.html"
          },
          {
            "trust": 1.8,
            "url": "http://lists.apple.com/archives/security-announce/2016/may/msg00004.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.securityfocus.com/bid/90691"
          },
          {
            "trust": 1.8,
            "url": "http://xmlsoft.org/news.html"
          },
          {
            "trust": 1.8,
            "url": "https://bugzilla.gnome.org/show_bug.cgi?id=758605"
          },
          {
            "trust": 1.8,
            "url": "https://git.gnome.org/browse/libxml2/commit/?id=a820dbeac29d330bae4be05d9ecd939ad6b4aa33"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206564"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206566"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206567"
          },
          {
            "trust": 1.8,
            "url": "https://support.apple.com/ht206568"
          },
          {
            "trust": 1.8,
            "url": "https://www.tenable.com/security/tns-2016-18"
          },
          {
            "trust": 1.8,
            "url": "https://www.debian.org/security/2016/dsa-3593"
          },
          {
            "trust": 1.8,
            "url": "http://www.securitytracker.com/id/1035890"
          },
          {
            "trust": 1.8,
            "url": "http://www.securitytracker.com/id/1038623"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1836"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1839"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1838"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1840"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1837"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1833"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1834"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2020.2340/"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2023.3732"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1835"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-3705"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-3627"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1762"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2016-1839"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/ios/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/accessibility/tvos/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/watchos-2/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/ipad/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/iphone/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/ipodtouch/"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/macosx/"
          },
          {
            "trust": 0.3,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10770\u0026actp=rss"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1024088"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1024194"
          },
          {
            "trust": 0.3,
            "url": "https://kc.mcafee.com/resources/sites/mcafee/content/live/product_documentation/27000/pd27128/en_us/meg_7_6_406_3402_103_release_notes_en_us.pdf"
          },
          {
            "trust": 0.3,
            "url": "https://bto.bluecoat.com/security-advisory/sa129"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21986974"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989043"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21990750"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1823"
          },
          {
            "trust": 0.3,
            "url": "https://support.apple.com/kb/ht201222"
          },
          {
            "trust": 0.3,
            "url": "https://gpgtools.org"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1829"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1817"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1819"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1803"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1827"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1808"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1830"
          },
          {
            "trust": 0.3,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1813"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1811"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1828"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1807"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1818"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1802"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1824"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1832"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4449"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4447"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4483"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8806"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2073"
          },
          {
            "trust": 0.2,
            "url": "https://www.linkedin.com/in/rshupak)"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1847"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1841"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1838"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1837"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1834"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4448"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1833"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1840"
          },
          {
            "trust": 0.2,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1836"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1762"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-1835"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4449"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-4447"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-3705"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2016-3627"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1814"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1801"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10170"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/125.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.exploit-db.com/exploits/39491/"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2994-1/"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/en-us/ht204641"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1842"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4448"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/itunes/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1831"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1790"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5131"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-3705"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-1840"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8035"
          },
          {
            "trust": 0.1,
            "url": "https://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-1838"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-3627"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-4483"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1819"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7942"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7499"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-1839"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-2073"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7499"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-1836"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8242"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5312"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8806"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7498"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7941"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7942"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8035"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7500"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-5131"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5312"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7498"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7500"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7941"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-1819"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7497"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-4658"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8242"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-4658"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7497"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.9.2+zdfsg1-4ubuntu0.4"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.9.3+dfsg1-1ubuntu0.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.9.1+dfsg1-3ubuntu4.8"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/libxml2/2.7.8.dfsg-5.1ubuntu4.15"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1854"
          },
          {
            "trust": 0.1,
            "url": "https://issues.jboss.org/):"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2106"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2106"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0702"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0797"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-6808"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en/red-hat-jboss-core-services-apache-http-server/version-2.4.23/apache-http-server-2423-release-notes/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2107"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0799"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2177"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-4483"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2842"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-8612"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1148"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0797"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3185"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2109"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0705"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3185"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?product=core.service.apachehttp\u0026downloadtype=distributions\u0026version=2.4.23"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2105"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-8176"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-5420"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2178"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2108"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0286"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2012-1148"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-2109"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3195"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-5419"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-4459"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2108"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-0209"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3195"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-0702"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2015-3216"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-2105"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-7141"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-0799"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-90658"
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839"
          },
          {
            "db": "BID",
            "id": "90691"
          },
          {
            "db": "PACKETSTORM",
            "id": "137080"
          },
          {
            "db": "PACKETSTORM",
            "id": "137613"
          },
          {
            "db": "PACKETSTORM",
            "id": "137076"
          },
          {
            "db": "PACKETSTORM",
            "id": "140533"
          },
          {
            "db": "PACKETSTORM",
            "id": "137335"
          },
          {
            "db": "PACKETSTORM",
            "id": "137298"
          },
          {
            "db": "PACKETSTORM",
            "id": "137075"
          },
          {
            "db": "PACKETSTORM",
            "id": "140182"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1839"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-90658",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2016-1839",
            "ident": null
          },
          {
            "db": "BID",
            "id": "90691",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137080",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137613",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137076",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "140533",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137335",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137298",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "137075",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "140182",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2016-1839",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2016-05-20T00:00:00",
            "db": "VULHUB",
            "id": "VHN-90658",
            "ident": null
          },
          {
            "date": "2016-05-20T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-1839",
            "ident": null
          },
          {
            "date": "2016-05-16T00:00:00",
            "db": "BID",
            "id": "90691",
            "ident": null
          },
          {
            "date": "2016-05-17T15:59:22",
            "db": "PACKETSTORM",
            "id": "137080",
            "ident": null
          },
          {
            "date": "2016-06-23T13:00:52",
            "db": "PACKETSTORM",
            "id": "137613",
            "ident": null
          },
          {
            "date": "2016-05-17T15:50:52",
            "db": "PACKETSTORM",
            "id": "137076",
            "ident": null
          },
          {
            "date": "2017-01-17T02:26:10",
            "db": "PACKETSTORM",
            "id": "140533",
            "ident": null
          },
          {
            "date": "2016-06-07T07:41:54",
            "db": "PACKETSTORM",
            "id": "137335",
            "ident": null
          },
          {
            "date": "2016-06-02T16:29:00",
            "db": "PACKETSTORM",
            "id": "137298",
            "ident": null
          },
          {
            "date": "2016-05-17T15:48:27",
            "db": "PACKETSTORM",
            "id": "137075",
            "ident": null
          },
          {
            "date": "2016-12-16T16:34:49",
            "db": "PACKETSTORM",
            "id": "140182",
            "ident": null
          },
          {
            "date": "2016-05-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201605-479",
            "ident": null
          },
          {
            "date": "2016-05-20T10:59:53.190000",
            "db": "NVD",
            "id": "CVE-2016-1839",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2019-03-25T00:00:00",
            "db": "VULHUB",
            "id": "VHN-90658",
            "ident": null
          },
          {
            "date": "2019-03-25T00:00:00",
            "db": "VULMON",
            "id": "CVE-2016-1839",
            "ident": null
          },
          {
            "date": "2017-12-19T22:37:00",
            "db": "BID",
            "id": "90691",
            "ident": null
          },
          {
            "date": "2023-06-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201605-479",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2016-1839",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Apple iOS , watchOS , OS X El Capitan with tvOS libxml2 Buffer error vulnerability",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "_id": null,
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201605-479"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201205-0312

    Vulnerability from variot - Updated: 2026-04-10 23:08

    sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to cause a denial of service (resource consumption) by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the 'T' case. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1823. This vulnerability CVE-2012-1823 Vulnerability due to insufficient fix for.Service operation disruption by placing command line options in query strings by a third party ( Resource consumption ) There is a possibility of being put into a state. PHP is prone to an information-disclosure vulnerability. Exploiting this issue allows remote attackers to view the source code of files in the context of the server process. This may allow the attacker to obtain sensitive information and to run arbitrary PHP code on the affected computer; other attacks are also possible. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: php security update Advisory ID: RHSA-2012:1046-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2012-1046.html Issue date: 2012-06-27 CVE Names: CVE-2010-2950 CVE-2011-4153 CVE-2012-0057 CVE-2012-0781 CVE-2012-0789 CVE-2012-1172 CVE-2012-2143 CVE-2012-2336 CVE-2012-2386 =====================================================================

    1. Summary:

    Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6.

    The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64

    1. Description:

    PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

    It was discovered that the PHP XSL extension did not restrict the file writing capability of libxslt. A remote attacker could use this flaw to create or overwrite an arbitrary file that is writable by the user running PHP, if a PHP script processed untrusted eXtensible Style Sheet Language Transformations (XSLT) content. (CVE-2012-0057)

    Note: This update disables file writing by default. A new PHP configuration directive, "xsl.security_prefs", can be used to enable file writing in XSLT.

    A flaw was found in the way PHP validated file names in file upload requests. A remote attacker could possibly use this flaw to bypass the sanitization of the uploaded file names, and cause a PHP script to store the uploaded file in an unexpected directory, by using a directory traversal attack. (CVE-2012-1172)

    Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way the PHP phar extension processed certain fields of tar archive files. A remote attacker could provide a specially-crafted tar archive file that, when processed by a PHP application using the phar extension, could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running PHP. (CVE-2012-2386)

    A format string flaw was found in the way the PHP phar extension processed certain PHAR files. A remote attacker could provide a specially-crafted PHAR file, which once processed in a PHP application using the phar extension, could lead to information disclosure and possibly arbitrary code execution via a crafted phar:// URI. (CVE-2010-2950)

    A flaw was found in the DES algorithm implementation in the crypt() password hashing function in PHP. If the password string to be hashed contained certain characters, the remainder of the string was ignored when calculating the hash, significantly reducing the password strength. (CVE-2012-2143)

    Note: With this update, passwords are no longer truncated when performing DES hashing. Therefore, new hashes of the affected passwords will not match stored hashes generated using vulnerable PHP versions, and will need to be updated.

    It was discovered that the fix for CVE-2012-1823, released via RHSA-2012:0546, did not properly filter all php-cgi command line arguments. A specially-crafted request to a PHP script could cause the PHP interpreter to execute the script in a loop, or output usage information that triggers an Internal Server Error. (CVE-2012-2336)

    A memory leak flaw was found in the PHP strtotime() function call. A remote attacker could possibly use this flaw to cause excessive memory consumption by triggering many strtotime() function calls. (CVE-2012-0789)

    A NULL pointer dereference flaw was found in the PHP tidy_diagnose() function. A remote attacker could use specially-crafted input to crash an application that uses tidy::diagnose. (CVE-2012-0781)

    It was found that PHP did not check the zend_strndup() function's return value in certain cases. A remote attacker could possibly use this flaw to crash a PHP application. (CVE-2011-4153)

    Upstream acknowledges Rubin Xu and Joseph Bonneau as the original reporters of CVE-2012-2143.

    All php users should upgrade to these updated packages, which contain backported patches to resolve these issues. After installing the updated packages, the httpd daemon must be restarted for the update to take effect.

    1. Solution:

    Before applying this update, make sure all previously-released errata relevant to your system have been applied.

    This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258

    1. Bugs fixed (http://bugzilla.redhat.com/):

    782657 - CVE-2012-0057 php: XSLT file writing vulnerability 782943 - CVE-2011-4153 php: zend_strndup() NULL pointer dereference may cause DoS 782951 - CVE-2012-0781 php: tidy_diagnose() NULL pointer dereference may cause DoS 783609 - CVE-2012-0789 php: strtotime timezone memory leak 799187 - CVE-2012-1172 php: $_FILES array indexes corruption 816956 - CVE-2012-2143 BSD crypt(): DES encrypted password weakness 820708 - CVE-2012-2336 php: incomplete CVE-2012-1823 fix - missing filtering of -T and -h 823594 - CVE-2012-2386 php: Integer overflow leading to heap-buffer overflow in the Phar extension 835024 - CVE-2010-2950 php: Format string flaw in phar extension via phar_stream_flush() (MOPS-2010-024)

    1. Package List:

    Red Hat Enterprise Linux Desktop Optional (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    i386: php-5.3.3-14.el6_3.i686.rpm php-bcmath-5.3.3-14.el6_3.i686.rpm php-cli-5.3.3-14.el6_3.i686.rpm php-common-5.3.3-14.el6_3.i686.rpm php-dba-5.3.3-14.el6_3.i686.rpm php-debuginfo-5.3.3-14.el6_3.i686.rpm php-devel-5.3.3-14.el6_3.i686.rpm php-embedded-5.3.3-14.el6_3.i686.rpm php-enchant-5.3.3-14.el6_3.i686.rpm php-gd-5.3.3-14.el6_3.i686.rpm php-imap-5.3.3-14.el6_3.i686.rpm php-intl-5.3.3-14.el6_3.i686.rpm php-ldap-5.3.3-14.el6_3.i686.rpm php-mbstring-5.3.3-14.el6_3.i686.rpm php-mysql-5.3.3-14.el6_3.i686.rpm php-odbc-5.3.3-14.el6_3.i686.rpm php-pdo-5.3.3-14.el6_3.i686.rpm php-pgsql-5.3.3-14.el6_3.i686.rpm php-process-5.3.3-14.el6_3.i686.rpm php-pspell-5.3.3-14.el6_3.i686.rpm php-recode-5.3.3-14.el6_3.i686.rpm php-snmp-5.3.3-14.el6_3.i686.rpm php-soap-5.3.3-14.el6_3.i686.rpm php-tidy-5.3.3-14.el6_3.i686.rpm php-xml-5.3.3-14.el6_3.i686.rpm php-xmlrpc-5.3.3-14.el6_3.i686.rpm php-zts-5.3.3-14.el6_3.i686.rpm

    x86_64: php-5.3.3-14.el6_3.x86_64.rpm php-bcmath-5.3.3-14.el6_3.x86_64.rpm php-cli-5.3.3-14.el6_3.x86_64.rpm php-common-5.3.3-14.el6_3.x86_64.rpm php-dba-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm php-devel-5.3.3-14.el6_3.x86_64.rpm php-embedded-5.3.3-14.el6_3.x86_64.rpm php-enchant-5.3.3-14.el6_3.x86_64.rpm php-gd-5.3.3-14.el6_3.x86_64.rpm php-imap-5.3.3-14.el6_3.x86_64.rpm php-intl-5.3.3-14.el6_3.x86_64.rpm php-ldap-5.3.3-14.el6_3.x86_64.rpm php-mbstring-5.3.3-14.el6_3.x86_64.rpm php-mysql-5.3.3-14.el6_3.x86_64.rpm php-odbc-5.3.3-14.el6_3.x86_64.rpm php-pdo-5.3.3-14.el6_3.x86_64.rpm php-pgsql-5.3.3-14.el6_3.x86_64.rpm php-process-5.3.3-14.el6_3.x86_64.rpm php-pspell-5.3.3-14.el6_3.x86_64.rpm php-recode-5.3.3-14.el6_3.x86_64.rpm php-snmp-5.3.3-14.el6_3.x86_64.rpm php-soap-5.3.3-14.el6_3.x86_64.rpm php-tidy-5.3.3-14.el6_3.x86_64.rpm php-xml-5.3.3-14.el6_3.x86_64.rpm php-xmlrpc-5.3.3-14.el6_3.x86_64.rpm php-zts-5.3.3-14.el6_3.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    x86_64: php-cli-5.3.3-14.el6_3.x86_64.rpm php-common-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    x86_64: php-5.3.3-14.el6_3.x86_64.rpm php-bcmath-5.3.3-14.el6_3.x86_64.rpm php-dba-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm php-devel-5.3.3-14.el6_3.x86_64.rpm php-embedded-5.3.3-14.el6_3.x86_64.rpm php-enchant-5.3.3-14.el6_3.x86_64.rpm php-gd-5.3.3-14.el6_3.x86_64.rpm php-imap-5.3.3-14.el6_3.x86_64.rpm php-intl-5.3.3-14.el6_3.x86_64.rpm php-ldap-5.3.3-14.el6_3.x86_64.rpm php-mbstring-5.3.3-14.el6_3.x86_64.rpm php-mysql-5.3.3-14.el6_3.x86_64.rpm php-odbc-5.3.3-14.el6_3.x86_64.rpm php-pdo-5.3.3-14.el6_3.x86_64.rpm php-pgsql-5.3.3-14.el6_3.x86_64.rpm php-process-5.3.3-14.el6_3.x86_64.rpm php-pspell-5.3.3-14.el6_3.x86_64.rpm php-recode-5.3.3-14.el6_3.x86_64.rpm php-snmp-5.3.3-14.el6_3.x86_64.rpm php-soap-5.3.3-14.el6_3.x86_64.rpm php-tidy-5.3.3-14.el6_3.x86_64.rpm php-xml-5.3.3-14.el6_3.x86_64.rpm php-xmlrpc-5.3.3-14.el6_3.x86_64.rpm php-zts-5.3.3-14.el6_3.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    i386: php-5.3.3-14.el6_3.i686.rpm php-cli-5.3.3-14.el6_3.i686.rpm php-common-5.3.3-14.el6_3.i686.rpm php-debuginfo-5.3.3-14.el6_3.i686.rpm php-gd-5.3.3-14.el6_3.i686.rpm php-ldap-5.3.3-14.el6_3.i686.rpm php-mysql-5.3.3-14.el6_3.i686.rpm php-odbc-5.3.3-14.el6_3.i686.rpm php-pdo-5.3.3-14.el6_3.i686.rpm php-pgsql-5.3.3-14.el6_3.i686.rpm php-soap-5.3.3-14.el6_3.i686.rpm php-xml-5.3.3-14.el6_3.i686.rpm php-xmlrpc-5.3.3-14.el6_3.i686.rpm

    ppc64: php-5.3.3-14.el6_3.ppc64.rpm php-cli-5.3.3-14.el6_3.ppc64.rpm php-common-5.3.3-14.el6_3.ppc64.rpm php-debuginfo-5.3.3-14.el6_3.ppc64.rpm php-gd-5.3.3-14.el6_3.ppc64.rpm php-ldap-5.3.3-14.el6_3.ppc64.rpm php-mysql-5.3.3-14.el6_3.ppc64.rpm php-odbc-5.3.3-14.el6_3.ppc64.rpm php-pdo-5.3.3-14.el6_3.ppc64.rpm php-pgsql-5.3.3-14.el6_3.ppc64.rpm php-soap-5.3.3-14.el6_3.ppc64.rpm php-xml-5.3.3-14.el6_3.ppc64.rpm php-xmlrpc-5.3.3-14.el6_3.ppc64.rpm

    s390x: php-5.3.3-14.el6_3.s390x.rpm php-cli-5.3.3-14.el6_3.s390x.rpm php-common-5.3.3-14.el6_3.s390x.rpm php-debuginfo-5.3.3-14.el6_3.s390x.rpm php-gd-5.3.3-14.el6_3.s390x.rpm php-ldap-5.3.3-14.el6_3.s390x.rpm php-mysql-5.3.3-14.el6_3.s390x.rpm php-odbc-5.3.3-14.el6_3.s390x.rpm php-pdo-5.3.3-14.el6_3.s390x.rpm php-pgsql-5.3.3-14.el6_3.s390x.rpm php-soap-5.3.3-14.el6_3.s390x.rpm php-xml-5.3.3-14.el6_3.s390x.rpm php-xmlrpc-5.3.3-14.el6_3.s390x.rpm

    x86_64: php-5.3.3-14.el6_3.x86_64.rpm php-cli-5.3.3-14.el6_3.x86_64.rpm php-common-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm php-gd-5.3.3-14.el6_3.x86_64.rpm php-ldap-5.3.3-14.el6_3.x86_64.rpm php-mysql-5.3.3-14.el6_3.x86_64.rpm php-odbc-5.3.3-14.el6_3.x86_64.rpm php-pdo-5.3.3-14.el6_3.x86_64.rpm php-pgsql-5.3.3-14.el6_3.x86_64.rpm php-soap-5.3.3-14.el6_3.x86_64.rpm php-xml-5.3.3-14.el6_3.x86_64.rpm php-xmlrpc-5.3.3-14.el6_3.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    i386: php-bcmath-5.3.3-14.el6_3.i686.rpm php-dba-5.3.3-14.el6_3.i686.rpm php-debuginfo-5.3.3-14.el6_3.i686.rpm php-devel-5.3.3-14.el6_3.i686.rpm php-embedded-5.3.3-14.el6_3.i686.rpm php-enchant-5.3.3-14.el6_3.i686.rpm php-imap-5.3.3-14.el6_3.i686.rpm php-intl-5.3.3-14.el6_3.i686.rpm php-mbstring-5.3.3-14.el6_3.i686.rpm php-process-5.3.3-14.el6_3.i686.rpm php-pspell-5.3.3-14.el6_3.i686.rpm php-recode-5.3.3-14.el6_3.i686.rpm php-snmp-5.3.3-14.el6_3.i686.rpm php-tidy-5.3.3-14.el6_3.i686.rpm php-zts-5.3.3-14.el6_3.i686.rpm

    ppc64: php-bcmath-5.3.3-14.el6_3.ppc64.rpm php-dba-5.3.3-14.el6_3.ppc64.rpm php-debuginfo-5.3.3-14.el6_3.ppc64.rpm php-devel-5.3.3-14.el6_3.ppc64.rpm php-embedded-5.3.3-14.el6_3.ppc64.rpm php-enchant-5.3.3-14.el6_3.ppc64.rpm php-imap-5.3.3-14.el6_3.ppc64.rpm php-intl-5.3.3-14.el6_3.ppc64.rpm php-mbstring-5.3.3-14.el6_3.ppc64.rpm php-process-5.3.3-14.el6_3.ppc64.rpm php-pspell-5.3.3-14.el6_3.ppc64.rpm php-recode-5.3.3-14.el6_3.ppc64.rpm php-snmp-5.3.3-14.el6_3.ppc64.rpm php-tidy-5.3.3-14.el6_3.ppc64.rpm php-zts-5.3.3-14.el6_3.ppc64.rpm

    s390x: php-bcmath-5.3.3-14.el6_3.s390x.rpm php-dba-5.3.3-14.el6_3.s390x.rpm php-debuginfo-5.3.3-14.el6_3.s390x.rpm php-devel-5.3.3-14.el6_3.s390x.rpm php-embedded-5.3.3-14.el6_3.s390x.rpm php-enchant-5.3.3-14.el6_3.s390x.rpm php-imap-5.3.3-14.el6_3.s390x.rpm php-intl-5.3.3-14.el6_3.s390x.rpm php-mbstring-5.3.3-14.el6_3.s390x.rpm php-process-5.3.3-14.el6_3.s390x.rpm php-pspell-5.3.3-14.el6_3.s390x.rpm php-recode-5.3.3-14.el6_3.s390x.rpm php-snmp-5.3.3-14.el6_3.s390x.rpm php-tidy-5.3.3-14.el6_3.s390x.rpm php-zts-5.3.3-14.el6_3.s390x.rpm

    x86_64: php-bcmath-5.3.3-14.el6_3.x86_64.rpm php-dba-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm php-devel-5.3.3-14.el6_3.x86_64.rpm php-embedded-5.3.3-14.el6_3.x86_64.rpm php-enchant-5.3.3-14.el6_3.x86_64.rpm php-imap-5.3.3-14.el6_3.x86_64.rpm php-intl-5.3.3-14.el6_3.x86_64.rpm php-mbstring-5.3.3-14.el6_3.x86_64.rpm php-process-5.3.3-14.el6_3.x86_64.rpm php-pspell-5.3.3-14.el6_3.x86_64.rpm php-recode-5.3.3-14.el6_3.x86_64.rpm php-snmp-5.3.3-14.el6_3.x86_64.rpm php-tidy-5.3.3-14.el6_3.x86_64.rpm php-zts-5.3.3-14.el6_3.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    i386: php-5.3.3-14.el6_3.i686.rpm php-cli-5.3.3-14.el6_3.i686.rpm php-common-5.3.3-14.el6_3.i686.rpm php-debuginfo-5.3.3-14.el6_3.i686.rpm php-gd-5.3.3-14.el6_3.i686.rpm php-ldap-5.3.3-14.el6_3.i686.rpm php-mysql-5.3.3-14.el6_3.i686.rpm php-odbc-5.3.3-14.el6_3.i686.rpm php-pdo-5.3.3-14.el6_3.i686.rpm php-pgsql-5.3.3-14.el6_3.i686.rpm php-soap-5.3.3-14.el6_3.i686.rpm php-xml-5.3.3-14.el6_3.i686.rpm php-xmlrpc-5.3.3-14.el6_3.i686.rpm

    x86_64: php-5.3.3-14.el6_3.x86_64.rpm php-cli-5.3.3-14.el6_3.x86_64.rpm php-common-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm php-gd-5.3.3-14.el6_3.x86_64.rpm php-ldap-5.3.3-14.el6_3.x86_64.rpm php-mysql-5.3.3-14.el6_3.x86_64.rpm php-odbc-5.3.3-14.el6_3.x86_64.rpm php-pdo-5.3.3-14.el6_3.x86_64.rpm php-pgsql-5.3.3-14.el6_3.x86_64.rpm php-soap-5.3.3-14.el6_3.x86_64.rpm php-xml-5.3.3-14.el6_3.x86_64.rpm php-xmlrpc-5.3.3-14.el6_3.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    Source: ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm

    i386: php-bcmath-5.3.3-14.el6_3.i686.rpm php-dba-5.3.3-14.el6_3.i686.rpm php-debuginfo-5.3.3-14.el6_3.i686.rpm php-devel-5.3.3-14.el6_3.i686.rpm php-embedded-5.3.3-14.el6_3.i686.rpm php-enchant-5.3.3-14.el6_3.i686.rpm php-imap-5.3.3-14.el6_3.i686.rpm php-intl-5.3.3-14.el6_3.i686.rpm php-mbstring-5.3.3-14.el6_3.i686.rpm php-process-5.3.3-14.el6_3.i686.rpm php-pspell-5.3.3-14.el6_3.i686.rpm php-recode-5.3.3-14.el6_3.i686.rpm php-snmp-5.3.3-14.el6_3.i686.rpm php-tidy-5.3.3-14.el6_3.i686.rpm php-zts-5.3.3-14.el6_3.i686.rpm

    x86_64: php-bcmath-5.3.3-14.el6_3.x86_64.rpm php-dba-5.3.3-14.el6_3.x86_64.rpm php-debuginfo-5.3.3-14.el6_3.x86_64.rpm php-devel-5.3.3-14.el6_3.x86_64.rpm php-embedded-5.3.3-14.el6_3.x86_64.rpm php-enchant-5.3.3-14.el6_3.x86_64.rpm php-imap-5.3.3-14.el6_3.x86_64.rpm php-intl-5.3.3-14.el6_3.x86_64.rpm php-mbstring-5.3.3-14.el6_3.x86_64.rpm php-process-5.3.3-14.el6_3.x86_64.rpm php-pspell-5.3.3-14.el6_3.x86_64.rpm php-recode-5.3.3-14.el6_3.x86_64.rpm php-snmp-5.3.3-14.el6_3.x86_64.rpm php-tidy-5.3.3-14.el6_3.x86_64.rpm php-zts-5.3.3-14.el6_3.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package

    1. References:

    https://www.redhat.com/security/data/cve/CVE-2010-2950.html https://www.redhat.com/security/data/cve/CVE-2011-4153.html https://www.redhat.com/security/data/cve/CVE-2012-0057.html https://www.redhat.com/security/data/cve/CVE-2012-0781.html https://www.redhat.com/security/data/cve/CVE-2012-0789.html https://www.redhat.com/security/data/cve/CVE-2012-1172.html https://www.redhat.com/security/data/cve/CVE-2012-2143.html https://www.redhat.com/security/data/cve/CVE-2012-2336.html https://www.redhat.com/security/data/cve/CVE-2012-2386.html https://access.redhat.com/security/updates/classification/#moderate https://rhn.redhat.com/errata/RHSA-2012-0546.html

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux)

    iD8DBQFP6yxRXlSAg2UNWIIRAqlmAKCLhNreR9eJ9DMLQgGynQ1AR57OhwCeNCjP 5dEIaw64iUF1AYJgb6tOHK0= =KioB -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .


    Problem Description:

    A vulnerability has been found and corrected in php(-cgi):

    PHP-CGI-based setups contain a vulnerability when parsing query string parameters from php files. The updated packages provides the latest version (5.3.13) which provides a solution to this flaw. The verification of md5 checksums and GPG signatures is performed automatically for you.

    All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

    gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

    You can view other update advisories for Mandriva Linux at:

    http://www.mandriva.com/security/advisories

    If you want to report vulnerabilities, please contact

    security_(at)_mandriva.com


    Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)

    iD8DBQFPq4WAmqjQ0CJFipgRAihWAKCc3667vbSD/ihxb7LB9g9x2C+bnQCg89XH JTVUFGYH3hR84ZM7EV65I9g= =hQaF -----END PGP SIGNATURE-----


    Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ . ============================================================================ Ubuntu Security Notice USN-1481-1 June 19, 2012

    php5 vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 12.04 LTS
    • Ubuntu 11.10
    • Ubuntu 11.04
    • Ubuntu 10.04 LTS
    • Ubuntu 8.04 LTS

    Summary:

    Several security issues were fixed in PHP.

    Software Description: - php5: HTML-embedded scripting language interpreter

    Details:

    It was discovered that PHP incorrectly handled certain Tidy::diagnose operations on invalid objects. (CVE-2012-1172)

    Rubin Xu and Joseph Bonneau discovered that PHP incorrectly handled certain Unicode characters in passwords passed to the crypt() function. (CVE-2012-2143)

    It was discovered that a Debian/Ubuntu specific patch caused PHP to incorrectly handle empty salt strings. This issue only affected Ubuntu 10.04 LTS and Ubuntu 11.04. (CVE-2012-2317)

    It was discovered that PHP, when used as a stand alone CGI processor for the Apache Web Server, did not properly parse and filter query strings. Configurations using mod_php5 and FastCGI were not vulnerable. (CVE-2012-2386)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 12.04 LTS: php5 5.3.10-1ubuntu3.2

    Ubuntu 11.10: php5 5.3.6-13ubuntu3.8

    Ubuntu 11.04: php5 5.3.5-1ubuntu7.10

    Ubuntu 10.04 LTS: php5 5.3.2-1ubuntu4.17

    Ubuntu 8.04 LTS: php5 5.2.4-2ubuntu5.25

    In general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03839862

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c03839862 Version: 2

    HPSBMU02900 rev.2 - HP System Management Homepage (SMH) running on Linux and Windows, Multiple Remote and Local Vulnerabilities

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2013-07-18 Last Updated: 2013-07-19

    Potential Security Impact: Local Denial of Service (DoS), remote Denial of Service (DoS), execution of arbitrary code, gain extended privileges, disclosure of information, unauthorized access, XSS

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP System Management Homepage (SMH) running on Linux and Windows. The vulnerabilities could be exploited remotely resulting in Local Denial of Service (DoS), remote Denial of Service (DoS), execution of arbitrary code, gain privileges, disclosure of information, unauthorized access, or XSS.

    References: CVE-2011-3389 (SSRT100740) Remote disclosure of information CVE-2012-0883 (SSRT101209) Remote gain extended privileges CVE-2012-2110 (SSRT101210) Remote Denial of Service (DoS) CVE-2012-2311 (SSRT100992) Remote execution of arbitrary code CVE-2012-2329 (SSRT100992) Remote Denial of Service (DoS) CVE-2012-2335 (SSRT100992) Remote execution of arbitrary code CVE-2012-2336 (SSRT100992) Remote Denial of Service (DoS) CVE-2012-5217 (SSRT101137) Remote unauthorized access CVE-2013-2355 (SSRT100696) Remote unauthorized Access CVE-2013-2356 (SSRT100835) Remote disclosure of information CVE-2013-2357 (SSRT100907) Remote Denial of Service (DoS) CVE-2013-2358 (SSRT100907) Remote Denial of Service (DoS) CVE-2013-2359 (SSRT100907) Remote Denial of Service (DoS) CVE-2013-2360 (SSRT100907) Remote Denial of Service (DoS) CVE-2013-2361 (SSRT101007) XSS CVE-2013-2362 (SSRT101076, ZDI-CAN-1676) Local Denial of Service (DoS) CVE-2013-2363 (SSRT101150) Remote disclosure of information CVE-2013-2364 (SSRT101151) XSS

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP System Management Homepage (SMH) v7.2.0 and earlier running on Linux and Windows.

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2011-3389 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2012-0883 (AV:L/AC:M/Au:N/C:C/I:C/A:C) 6.9 CVE-2012-2110 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-2311 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-2329 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-2335 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2012-2336 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2012-5217 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6 CVE-2013-2355 (AV:N/AC:M/Au:N/C:P/I:N/A:N) 4.3 CVE-2013-2356 (AV:N/AC:L/Au:N/C:C/I:N/A:N) 7.8 CVE-2013-2357 (AV:N/AC:M/Au:S/C:N/I:N/A:C) 6.3 CVE-2013-2358 (AV:N/AC:M/Au:S/C:N/I:N/A:C) 6.3 CVE-2013-2359 (AV:N/AC:M/Au:S/C:N/I:N/A:P) 3.5 CVE-2013-2360 (AV:N/AC:M/Au:S/C:N/I:N/A:P) 3.5 CVE-2013-2361 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-2362 (AV:L/AC:H/Au:S/C:N/I:N/A:P) 1.0 CVE-2013-2363 (AV:N/AC:H/Au:N/C:C/I:N/A:P) 6.1 CVE-2013-2364 (AV:N/AC:L/Au:S/C:N/I:N/A:P) 4.0 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    The Hewlett-Packard Company thanks agix for working with the TippingPoint Zero Day Initiative to report vulnerability CVE-2013-2362 to security-alert@hp.com

    RESOLUTION

    HP has made System Management Homepage (SMH) v7.2.1 or subsequent available for Windows and Linux to resolve the vulnerabilities.

    Information and updates for SMH can be found at the following location:

    http://h18013.www1.hp.com/products/servers/management/agents/index.html

    HISTORY Version:1 (rev.1) - 18 July 2013 Initial release Version:2 (rev.2) - 19 July 2013 Corrected CVE-2012-5217 assignment

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2013 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "php",
            "version": "5.3.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "php",
            "version": "5.3.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "php",
            "version": "5.3.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "php",
            "version": "5.4.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "php",
            "version": "5.3.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "php",
            "version": "5.4.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "php",
            "version": "5.3.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "php",
            "version": "5.4.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "php",
            "version": "5.3.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.14"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.13"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.17"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.13"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "2.0b10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.16"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.18"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.16"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.2.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.3.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.15"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.17"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.9"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.6"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.4"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.3.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.14"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.5"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "3.0.15"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.4.8"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.0"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.3.11"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.2.10"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "4.0.7"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "php",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "php",
            "version": "5.3.12"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "the php group",
            "version": "5.4.x"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "the php group",
            "version": "5.4.3"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.5.4"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp3 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.1.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux long life server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "appliance server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.3"
          },
          {
            "_id": null,
            "model": "enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "voice portal sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.10"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2011"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.4"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "11.4"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.1"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ctpview 7.0r1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "lotus foundations start 1.2.2b",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.2"
          },
          {
            "_id": null,
            "model": "enterprise linux eus 5.6.z server",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "aura session manager sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "lotus foundations start 1.2.2a",
            "scope": null,
            "trust": 0.3,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.5"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop optional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.1"
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1.2"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "enterprise linux server optional eus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "110"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "aura session manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2011"
          },
          {
            "_id": null,
            "model": "linux lts lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "10.04"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "ctpview",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura messaging",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.6.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.3"
          },
          {
            "_id": null,
            "model": "linux enterprise server for vmware sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.8.2"
          },
          {
            "_id": null,
            "model": "linux enterprise server for vmware sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura communication manager utility services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "appliance server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "3.0x64"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop workstation client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.1"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "2008"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "plesk panel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "parallels",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "ip office application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "lotus foundations start",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "enterprise server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "aura session manager sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "turbolinux",
            "version": "11x64"
          },
          {
            "_id": null,
            "model": "system management homepage",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server optional eus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.7.2"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.1"
          },
          {
            "_id": null,
            "model": "php",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "php",
            "version": "5.3.13"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2336"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:php:php",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "De Eindbazen",
        "sources": [
          {
            "db": "BID",
            "id": "53388"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2012-2336",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2012-2336",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2012-2336",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2012-2336",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201205-209",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2336"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to cause a denial of service (resource consumption) by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the \u0027T\u0027 case.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1823. This vulnerability CVE-2012-1823 Vulnerability due to insufficient fix for.Service operation disruption by placing command line options in query strings by a third party ( Resource consumption ) There is a possibility of being put into a state. PHP is prone to an information-disclosure vulnerability. \nExploiting this issue allows remote attackers to view the source code of files in the context of the server process. This may allow the attacker to obtain sensitive information and to run arbitrary PHP code on the affected computer; other attacks are also possible. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: php security update\nAdvisory ID:       RHSA-2012:1046-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2012-1046.html\nIssue date:        2012-06-27\nCVE Names:         CVE-2010-2950 CVE-2011-4153 CVE-2012-0057 \n                   CVE-2012-0781 CVE-2012-0789 CVE-2012-1172 \n                   CVE-2012-2143 CVE-2012-2336 CVE-2012-2386 \n=====================================================================\n\n1. Summary:\n\nUpdated php packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 6. \n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64\n\n3. Description:\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server. \n\nIt was discovered that the PHP XSL extension did not restrict the file\nwriting capability of libxslt. A remote attacker could use this flaw to\ncreate or overwrite an arbitrary file that is writable by the user running\nPHP, if a PHP script processed untrusted eXtensible Style Sheet Language\nTransformations (XSLT) content. (CVE-2012-0057)\n\nNote: This update disables file writing by default. A new PHP configuration\ndirective, \"xsl.security_prefs\", can be used to enable file writing in\nXSLT. \n\nA flaw was found in the way PHP validated file names in file upload\nrequests. A remote attacker could possibly use this flaw to bypass the\nsanitization of the uploaded file names, and cause a PHP script to store\nthe uploaded file in an unexpected directory, by using a directory\ntraversal attack. (CVE-2012-1172)\n\nMultiple integer overflow flaws, leading to heap-based buffer overflows,\nwere found in the way the PHP phar extension processed certain fields of\ntar archive files. A remote attacker could provide a specially-crafted tar\narchive file that, when processed by a PHP application using the phar\nextension, could cause the application to crash or, potentially, execute\narbitrary code with the privileges of the user running PHP. (CVE-2012-2386)\n\nA format string flaw was found in the way the PHP phar extension processed\ncertain PHAR files. A remote attacker could provide a specially-crafted\nPHAR file, which once processed in a PHP application using the phar\nextension, could lead to information disclosure and possibly arbitrary code\nexecution via a crafted phar:// URI. (CVE-2010-2950)\n\nA flaw was found in the DES algorithm implementation in the crypt()\npassword hashing function in PHP. If the password string to be hashed\ncontained certain characters, the remainder of the string was ignored when\ncalculating the hash, significantly reducing the password strength. \n(CVE-2012-2143)\n\nNote: With this update, passwords are no longer truncated when performing\nDES hashing. Therefore, new hashes of the affected passwords will not match\nstored hashes generated using vulnerable PHP versions, and will need to be\nupdated. \n\nIt was discovered that the fix for CVE-2012-1823, released via\nRHSA-2012:0546, did not properly filter all php-cgi command line arguments. \nA specially-crafted request to a PHP script could cause the PHP interpreter\nto execute the script in a loop, or output usage information that triggers\nan Internal Server Error. (CVE-2012-2336)\n\nA memory leak flaw was found in the PHP strtotime() function call. A remote\nattacker could possibly use this flaw to cause excessive memory consumption\nby triggering many strtotime() function calls. (CVE-2012-0789)\n\nA NULL pointer dereference flaw was found in the PHP tidy_diagnose()\nfunction. A remote attacker could use specially-crafted input to crash an\napplication that uses tidy::diagnose. (CVE-2012-0781)\n\nIt was found that PHP did not check the zend_strndup() function\u0027s return\nvalue in certain cases. A remote attacker could possibly use this flaw to\ncrash a PHP application. (CVE-2011-4153)\n\nUpstream acknowledges Rubin Xu and Joseph Bonneau as the original reporters\nof CVE-2012-2143. \n\nAll php users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258\n\n5. Bugs fixed (http://bugzilla.redhat.com/):\n\n782657 - CVE-2012-0057 php: XSLT file writing vulnerability\n782943 - CVE-2011-4153 php: zend_strndup() NULL pointer dereference may cause DoS\n782951 - CVE-2012-0781 php: tidy_diagnose() NULL pointer dereference may cause DoS\n783609 - CVE-2012-0789 php: strtotime timezone memory leak\n799187 - CVE-2012-1172 php: $_FILES array indexes corruption\n816956 - CVE-2012-2143 BSD crypt(): DES encrypted password weakness\n820708 - CVE-2012-2336 php: incomplete CVE-2012-1823 fix - missing filtering of -T and -h\n823594 - CVE-2012-2386 php: Integer overflow leading to heap-buffer overflow in the Phar extension\n835024 - CVE-2010-2950 php: Format string flaw in phar extension via phar_stream_flush() (MOPS-2010-024)\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\ni386:\nphp-5.3.3-14.el6_3.i686.rpm\nphp-bcmath-5.3.3-14.el6_3.i686.rpm\nphp-cli-5.3.3-14.el6_3.i686.rpm\nphp-common-5.3.3-14.el6_3.i686.rpm\nphp-dba-5.3.3-14.el6_3.i686.rpm\nphp-debuginfo-5.3.3-14.el6_3.i686.rpm\nphp-devel-5.3.3-14.el6_3.i686.rpm\nphp-embedded-5.3.3-14.el6_3.i686.rpm\nphp-enchant-5.3.3-14.el6_3.i686.rpm\nphp-gd-5.3.3-14.el6_3.i686.rpm\nphp-imap-5.3.3-14.el6_3.i686.rpm\nphp-intl-5.3.3-14.el6_3.i686.rpm\nphp-ldap-5.3.3-14.el6_3.i686.rpm\nphp-mbstring-5.3.3-14.el6_3.i686.rpm\nphp-mysql-5.3.3-14.el6_3.i686.rpm\nphp-odbc-5.3.3-14.el6_3.i686.rpm\nphp-pdo-5.3.3-14.el6_3.i686.rpm\nphp-pgsql-5.3.3-14.el6_3.i686.rpm\nphp-process-5.3.3-14.el6_3.i686.rpm\nphp-pspell-5.3.3-14.el6_3.i686.rpm\nphp-recode-5.3.3-14.el6_3.i686.rpm\nphp-snmp-5.3.3-14.el6_3.i686.rpm\nphp-soap-5.3.3-14.el6_3.i686.rpm\nphp-tidy-5.3.3-14.el6_3.i686.rpm\nphp-xml-5.3.3-14.el6_3.i686.rpm\nphp-xmlrpc-5.3.3-14.el6_3.i686.rpm\nphp-zts-5.3.3-14.el6_3.i686.rpm\n\nx86_64:\nphp-5.3.3-14.el6_3.x86_64.rpm\nphp-bcmath-5.3.3-14.el6_3.x86_64.rpm\nphp-cli-5.3.3-14.el6_3.x86_64.rpm\nphp-common-5.3.3-14.el6_3.x86_64.rpm\nphp-dba-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\nphp-devel-5.3.3-14.el6_3.x86_64.rpm\nphp-embedded-5.3.3-14.el6_3.x86_64.rpm\nphp-enchant-5.3.3-14.el6_3.x86_64.rpm\nphp-gd-5.3.3-14.el6_3.x86_64.rpm\nphp-imap-5.3.3-14.el6_3.x86_64.rpm\nphp-intl-5.3.3-14.el6_3.x86_64.rpm\nphp-ldap-5.3.3-14.el6_3.x86_64.rpm\nphp-mbstring-5.3.3-14.el6_3.x86_64.rpm\nphp-mysql-5.3.3-14.el6_3.x86_64.rpm\nphp-odbc-5.3.3-14.el6_3.x86_64.rpm\nphp-pdo-5.3.3-14.el6_3.x86_64.rpm\nphp-pgsql-5.3.3-14.el6_3.x86_64.rpm\nphp-process-5.3.3-14.el6_3.x86_64.rpm\nphp-pspell-5.3.3-14.el6_3.x86_64.rpm\nphp-recode-5.3.3-14.el6_3.x86_64.rpm\nphp-snmp-5.3.3-14.el6_3.x86_64.rpm\nphp-soap-5.3.3-14.el6_3.x86_64.rpm\nphp-tidy-5.3.3-14.el6_3.x86_64.rpm\nphp-xml-5.3.3-14.el6_3.x86_64.rpm\nphp-xmlrpc-5.3.3-14.el6_3.x86_64.rpm\nphp-zts-5.3.3-14.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\nx86_64:\nphp-cli-5.3.3-14.el6_3.x86_64.rpm\nphp-common-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6ComputeNode/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\nx86_64:\nphp-5.3.3-14.el6_3.x86_64.rpm\nphp-bcmath-5.3.3-14.el6_3.x86_64.rpm\nphp-dba-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\nphp-devel-5.3.3-14.el6_3.x86_64.rpm\nphp-embedded-5.3.3-14.el6_3.x86_64.rpm\nphp-enchant-5.3.3-14.el6_3.x86_64.rpm\nphp-gd-5.3.3-14.el6_3.x86_64.rpm\nphp-imap-5.3.3-14.el6_3.x86_64.rpm\nphp-intl-5.3.3-14.el6_3.x86_64.rpm\nphp-ldap-5.3.3-14.el6_3.x86_64.rpm\nphp-mbstring-5.3.3-14.el6_3.x86_64.rpm\nphp-mysql-5.3.3-14.el6_3.x86_64.rpm\nphp-odbc-5.3.3-14.el6_3.x86_64.rpm\nphp-pdo-5.3.3-14.el6_3.x86_64.rpm\nphp-pgsql-5.3.3-14.el6_3.x86_64.rpm\nphp-process-5.3.3-14.el6_3.x86_64.rpm\nphp-pspell-5.3.3-14.el6_3.x86_64.rpm\nphp-recode-5.3.3-14.el6_3.x86_64.rpm\nphp-snmp-5.3.3-14.el6_3.x86_64.rpm\nphp-soap-5.3.3-14.el6_3.x86_64.rpm\nphp-tidy-5.3.3-14.el6_3.x86_64.rpm\nphp-xml-5.3.3-14.el6_3.x86_64.rpm\nphp-xmlrpc-5.3.3-14.el6_3.x86_64.rpm\nphp-zts-5.3.3-14.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\ni386:\nphp-5.3.3-14.el6_3.i686.rpm\nphp-cli-5.3.3-14.el6_3.i686.rpm\nphp-common-5.3.3-14.el6_3.i686.rpm\nphp-debuginfo-5.3.3-14.el6_3.i686.rpm\nphp-gd-5.3.3-14.el6_3.i686.rpm\nphp-ldap-5.3.3-14.el6_3.i686.rpm\nphp-mysql-5.3.3-14.el6_3.i686.rpm\nphp-odbc-5.3.3-14.el6_3.i686.rpm\nphp-pdo-5.3.3-14.el6_3.i686.rpm\nphp-pgsql-5.3.3-14.el6_3.i686.rpm\nphp-soap-5.3.3-14.el6_3.i686.rpm\nphp-xml-5.3.3-14.el6_3.i686.rpm\nphp-xmlrpc-5.3.3-14.el6_3.i686.rpm\n\nppc64:\nphp-5.3.3-14.el6_3.ppc64.rpm\nphp-cli-5.3.3-14.el6_3.ppc64.rpm\nphp-common-5.3.3-14.el6_3.ppc64.rpm\nphp-debuginfo-5.3.3-14.el6_3.ppc64.rpm\nphp-gd-5.3.3-14.el6_3.ppc64.rpm\nphp-ldap-5.3.3-14.el6_3.ppc64.rpm\nphp-mysql-5.3.3-14.el6_3.ppc64.rpm\nphp-odbc-5.3.3-14.el6_3.ppc64.rpm\nphp-pdo-5.3.3-14.el6_3.ppc64.rpm\nphp-pgsql-5.3.3-14.el6_3.ppc64.rpm\nphp-soap-5.3.3-14.el6_3.ppc64.rpm\nphp-xml-5.3.3-14.el6_3.ppc64.rpm\nphp-xmlrpc-5.3.3-14.el6_3.ppc64.rpm\n\ns390x:\nphp-5.3.3-14.el6_3.s390x.rpm\nphp-cli-5.3.3-14.el6_3.s390x.rpm\nphp-common-5.3.3-14.el6_3.s390x.rpm\nphp-debuginfo-5.3.3-14.el6_3.s390x.rpm\nphp-gd-5.3.3-14.el6_3.s390x.rpm\nphp-ldap-5.3.3-14.el6_3.s390x.rpm\nphp-mysql-5.3.3-14.el6_3.s390x.rpm\nphp-odbc-5.3.3-14.el6_3.s390x.rpm\nphp-pdo-5.3.3-14.el6_3.s390x.rpm\nphp-pgsql-5.3.3-14.el6_3.s390x.rpm\nphp-soap-5.3.3-14.el6_3.s390x.rpm\nphp-xml-5.3.3-14.el6_3.s390x.rpm\nphp-xmlrpc-5.3.3-14.el6_3.s390x.rpm\n\nx86_64:\nphp-5.3.3-14.el6_3.x86_64.rpm\nphp-cli-5.3.3-14.el6_3.x86_64.rpm\nphp-common-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\nphp-gd-5.3.3-14.el6_3.x86_64.rpm\nphp-ldap-5.3.3-14.el6_3.x86_64.rpm\nphp-mysql-5.3.3-14.el6_3.x86_64.rpm\nphp-odbc-5.3.3-14.el6_3.x86_64.rpm\nphp-pdo-5.3.3-14.el6_3.x86_64.rpm\nphp-pgsql-5.3.3-14.el6_3.x86_64.rpm\nphp-soap-5.3.3-14.el6_3.x86_64.rpm\nphp-xml-5.3.3-14.el6_3.x86_64.rpm\nphp-xmlrpc-5.3.3-14.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\ni386:\nphp-bcmath-5.3.3-14.el6_3.i686.rpm\nphp-dba-5.3.3-14.el6_3.i686.rpm\nphp-debuginfo-5.3.3-14.el6_3.i686.rpm\nphp-devel-5.3.3-14.el6_3.i686.rpm\nphp-embedded-5.3.3-14.el6_3.i686.rpm\nphp-enchant-5.3.3-14.el6_3.i686.rpm\nphp-imap-5.3.3-14.el6_3.i686.rpm\nphp-intl-5.3.3-14.el6_3.i686.rpm\nphp-mbstring-5.3.3-14.el6_3.i686.rpm\nphp-process-5.3.3-14.el6_3.i686.rpm\nphp-pspell-5.3.3-14.el6_3.i686.rpm\nphp-recode-5.3.3-14.el6_3.i686.rpm\nphp-snmp-5.3.3-14.el6_3.i686.rpm\nphp-tidy-5.3.3-14.el6_3.i686.rpm\nphp-zts-5.3.3-14.el6_3.i686.rpm\n\nppc64:\nphp-bcmath-5.3.3-14.el6_3.ppc64.rpm\nphp-dba-5.3.3-14.el6_3.ppc64.rpm\nphp-debuginfo-5.3.3-14.el6_3.ppc64.rpm\nphp-devel-5.3.3-14.el6_3.ppc64.rpm\nphp-embedded-5.3.3-14.el6_3.ppc64.rpm\nphp-enchant-5.3.3-14.el6_3.ppc64.rpm\nphp-imap-5.3.3-14.el6_3.ppc64.rpm\nphp-intl-5.3.3-14.el6_3.ppc64.rpm\nphp-mbstring-5.3.3-14.el6_3.ppc64.rpm\nphp-process-5.3.3-14.el6_3.ppc64.rpm\nphp-pspell-5.3.3-14.el6_3.ppc64.rpm\nphp-recode-5.3.3-14.el6_3.ppc64.rpm\nphp-snmp-5.3.3-14.el6_3.ppc64.rpm\nphp-tidy-5.3.3-14.el6_3.ppc64.rpm\nphp-zts-5.3.3-14.el6_3.ppc64.rpm\n\ns390x:\nphp-bcmath-5.3.3-14.el6_3.s390x.rpm\nphp-dba-5.3.3-14.el6_3.s390x.rpm\nphp-debuginfo-5.3.3-14.el6_3.s390x.rpm\nphp-devel-5.3.3-14.el6_3.s390x.rpm\nphp-embedded-5.3.3-14.el6_3.s390x.rpm\nphp-enchant-5.3.3-14.el6_3.s390x.rpm\nphp-imap-5.3.3-14.el6_3.s390x.rpm\nphp-intl-5.3.3-14.el6_3.s390x.rpm\nphp-mbstring-5.3.3-14.el6_3.s390x.rpm\nphp-process-5.3.3-14.el6_3.s390x.rpm\nphp-pspell-5.3.3-14.el6_3.s390x.rpm\nphp-recode-5.3.3-14.el6_3.s390x.rpm\nphp-snmp-5.3.3-14.el6_3.s390x.rpm\nphp-tidy-5.3.3-14.el6_3.s390x.rpm\nphp-zts-5.3.3-14.el6_3.s390x.rpm\n\nx86_64:\nphp-bcmath-5.3.3-14.el6_3.x86_64.rpm\nphp-dba-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\nphp-devel-5.3.3-14.el6_3.x86_64.rpm\nphp-embedded-5.3.3-14.el6_3.x86_64.rpm\nphp-enchant-5.3.3-14.el6_3.x86_64.rpm\nphp-imap-5.3.3-14.el6_3.x86_64.rpm\nphp-intl-5.3.3-14.el6_3.x86_64.rpm\nphp-mbstring-5.3.3-14.el6_3.x86_64.rpm\nphp-process-5.3.3-14.el6_3.x86_64.rpm\nphp-pspell-5.3.3-14.el6_3.x86_64.rpm\nphp-recode-5.3.3-14.el6_3.x86_64.rpm\nphp-snmp-5.3.3-14.el6_3.x86_64.rpm\nphp-tidy-5.3.3-14.el6_3.x86_64.rpm\nphp-zts-5.3.3-14.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\ni386:\nphp-5.3.3-14.el6_3.i686.rpm\nphp-cli-5.3.3-14.el6_3.i686.rpm\nphp-common-5.3.3-14.el6_3.i686.rpm\nphp-debuginfo-5.3.3-14.el6_3.i686.rpm\nphp-gd-5.3.3-14.el6_3.i686.rpm\nphp-ldap-5.3.3-14.el6_3.i686.rpm\nphp-mysql-5.3.3-14.el6_3.i686.rpm\nphp-odbc-5.3.3-14.el6_3.i686.rpm\nphp-pdo-5.3.3-14.el6_3.i686.rpm\nphp-pgsql-5.3.3-14.el6_3.i686.rpm\nphp-soap-5.3.3-14.el6_3.i686.rpm\nphp-xml-5.3.3-14.el6_3.i686.rpm\nphp-xmlrpc-5.3.3-14.el6_3.i686.rpm\n\nx86_64:\nphp-5.3.3-14.el6_3.x86_64.rpm\nphp-cli-5.3.3-14.el6_3.x86_64.rpm\nphp-common-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\nphp-gd-5.3.3-14.el6_3.x86_64.rpm\nphp-ldap-5.3.3-14.el6_3.x86_64.rpm\nphp-mysql-5.3.3-14.el6_3.x86_64.rpm\nphp-odbc-5.3.3-14.el6_3.x86_64.rpm\nphp-pdo-5.3.3-14.el6_3.x86_64.rpm\nphp-pgsql-5.3.3-14.el6_3.x86_64.rpm\nphp-soap-5.3.3-14.el6_3.x86_64.rpm\nphp-xml-5.3.3-14.el6_3.x86_64.rpm\nphp-xmlrpc-5.3.3-14.el6_3.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\nSource:\nftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/php-5.3.3-14.el6_3.src.rpm\n\ni386:\nphp-bcmath-5.3.3-14.el6_3.i686.rpm\nphp-dba-5.3.3-14.el6_3.i686.rpm\nphp-debuginfo-5.3.3-14.el6_3.i686.rpm\nphp-devel-5.3.3-14.el6_3.i686.rpm\nphp-embedded-5.3.3-14.el6_3.i686.rpm\nphp-enchant-5.3.3-14.el6_3.i686.rpm\nphp-imap-5.3.3-14.el6_3.i686.rpm\nphp-intl-5.3.3-14.el6_3.i686.rpm\nphp-mbstring-5.3.3-14.el6_3.i686.rpm\nphp-process-5.3.3-14.el6_3.i686.rpm\nphp-pspell-5.3.3-14.el6_3.i686.rpm\nphp-recode-5.3.3-14.el6_3.i686.rpm\nphp-snmp-5.3.3-14.el6_3.i686.rpm\nphp-tidy-5.3.3-14.el6_3.i686.rpm\nphp-zts-5.3.3-14.el6_3.i686.rpm\n\nx86_64:\nphp-bcmath-5.3.3-14.el6_3.x86_64.rpm\nphp-dba-5.3.3-14.el6_3.x86_64.rpm\nphp-debuginfo-5.3.3-14.el6_3.x86_64.rpm\nphp-devel-5.3.3-14.el6_3.x86_64.rpm\nphp-embedded-5.3.3-14.el6_3.x86_64.rpm\nphp-enchant-5.3.3-14.el6_3.x86_64.rpm\nphp-imap-5.3.3-14.el6_3.x86_64.rpm\nphp-intl-5.3.3-14.el6_3.x86_64.rpm\nphp-mbstring-5.3.3-14.el6_3.x86_64.rpm\nphp-process-5.3.3-14.el6_3.x86_64.rpm\nphp-pspell-5.3.3-14.el6_3.x86_64.rpm\nphp-recode-5.3.3-14.el6_3.x86_64.rpm\nphp-snmp-5.3.3-14.el6_3.x86_64.rpm\nphp-tidy-5.3.3-14.el6_3.x86_64.rpm\nphp-zts-5.3.3-14.el6_3.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/#package\n\n7. References:\n\nhttps://www.redhat.com/security/data/cve/CVE-2010-2950.html\nhttps://www.redhat.com/security/data/cve/CVE-2011-4153.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-0057.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-0781.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-0789.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-1172.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-2143.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-2336.html\nhttps://www.redhat.com/security/data/cve/CVE-2012-2386.html\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://rhn.redhat.com/errata/RHSA-2012-0546.html\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e.  More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2012 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.4 (GNU/Linux)\n\niD8DBQFP6yxRXlSAg2UNWIIRAqlmAKCLhNreR9eJ9DMLQgGynQ1AR57OhwCeNCjP\n5dEIaw64iUF1AYJgb6tOHK0=\n=KioB\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n _______________________________________________________________________\n\n Problem Description:\n\n A vulnerability has been found and corrected in php(-cgi):\n \n PHP-CGI-based setups contain a vulnerability when parsing query string\n parameters from php files. The\n updated packages provides the latest version (5.3.13) which provides\n a solution to this flaw.  The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security.  You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n  http://www.mandriva.com/security/advisories\n\n If you want to report vulnerabilities, please contact\n\n  security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID     Date       User ID\n pub  1024D/22458A98 2000-07-10 Mandriva Security Team\n  \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.11 (GNU/Linux)\n\niD8DBQFPq4WAmqjQ0CJFipgRAihWAKCc3667vbSD/ihxb7LB9g9x2C+bnQCg89XH\nJTVUFGYH3hR84ZM7EV65I9g=\n=hQaF\n-----END PGP SIGNATURE-----\n\n_______________________________________________\nFull-Disclosure - We believe in it. \nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\nHosted and sponsored by Secunia - http://secunia.com/\n. ============================================================================\nUbuntu Security Notice USN-1481-1\nJune 19, 2012\n\nphp5 vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 12.04 LTS\n- Ubuntu 11.10\n- Ubuntu 11.04\n- Ubuntu 10.04 LTS\n- Ubuntu 8.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in PHP. \n\nSoftware Description:\n- php5: HTML-embedded scripting language interpreter\n\nDetails:\n\nIt was discovered that PHP incorrectly handled certain Tidy::diagnose\noperations on invalid objects. (CVE-2012-1172)\n\nRubin Xu and Joseph Bonneau discovered that PHP incorrectly handled certain\nUnicode characters in passwords passed to the crypt() function. \n(CVE-2012-2143)\n\nIt was discovered that a Debian/Ubuntu specific patch caused PHP to\nincorrectly handle empty salt strings. This issue only affected Ubuntu 10.04\nLTS and Ubuntu 11.04. (CVE-2012-2317)\n\nIt was discovered that PHP, when used as a stand alone CGI processor\nfor the Apache Web Server, did not properly parse and filter query\nstrings. Configurations using mod_php5 and FastCGI were not vulnerable. \n(CVE-2012-2386)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 12.04 LTS:\n  php5                            5.3.10-1ubuntu3.2\n\nUbuntu 11.10:\n  php5                            5.3.6-13ubuntu3.8\n\nUbuntu 11.04:\n  php5                            5.3.5-1ubuntu7.10\n\nUbuntu 10.04 LTS:\n  php5                            5.3.2-1ubuntu4.17\n\nUbuntu 8.04 LTS:\n  php5                            5.2.4-2ubuntu5.25\n\nIn general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c03839862\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c03839862\nVersion: 2\n\nHPSBMU02900 rev.2 - HP System Management Homepage (SMH) running on Linux and\nWindows, Multiple Remote and Local Vulnerabilities\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2013-07-18\nLast Updated: 2013-07-19\n\nPotential Security Impact: Local Denial of Service (DoS), remote Denial of\nService (DoS), execution of arbitrary code, gain extended privileges,\ndisclosure of information, unauthorized access, XSS\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP System\nManagement Homepage (SMH) running on Linux and Windows. The vulnerabilities\ncould be exploited remotely resulting in Local Denial of Service (DoS),\nremote Denial of Service (DoS), execution of arbitrary code, gain privileges,\ndisclosure of information, unauthorized access, or XSS. \n\nReferences:\nCVE-2011-3389 (SSRT100740) Remote disclosure of information\nCVE-2012-0883 (SSRT101209) Remote gain extended privileges\nCVE-2012-2110 (SSRT101210) Remote Denial of Service (DoS)\nCVE-2012-2311 (SSRT100992) Remote execution of arbitrary code\nCVE-2012-2329 (SSRT100992) Remote Denial of Service (DoS)\nCVE-2012-2335 (SSRT100992) Remote execution of arbitrary code\nCVE-2012-2336 (SSRT100992) Remote Denial of Service (DoS)\nCVE-2012-5217 (SSRT101137) Remote unauthorized access\nCVE-2013-2355 (SSRT100696) Remote unauthorized Access\nCVE-2013-2356 (SSRT100835) Remote disclosure of information\nCVE-2013-2357 (SSRT100907) Remote Denial of Service (DoS)\nCVE-2013-2358 (SSRT100907) Remote Denial of Service (DoS)\nCVE-2013-2359 (SSRT100907) Remote Denial of Service (DoS)\nCVE-2013-2360 (SSRT100907) Remote Denial of Service (DoS)\nCVE-2013-2361 (SSRT101007) XSS\nCVE-2013-2362 (SSRT101076, ZDI-CAN-1676) Local Denial of Service (DoS)\nCVE-2013-2363 (SSRT101150) Remote disclosure of information\nCVE-2013-2364 (SSRT101151) XSS\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP System Management Homepage (SMH) v7.2.0 and earlier running on Linux and\nWindows. \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2011-3389    (AV:N/AC:M/Au:N/C:P/I:N/A:N)       4.3\nCVE-2012-0883    (AV:L/AC:M/Au:N/C:C/I:C/A:C)       6.9\nCVE-2012-2110    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\nCVE-2012-2311    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\nCVE-2012-2329    (AV:N/AC:L/Au:N/C:N/I:N/A:P)       5.0\nCVE-2012-2335    (AV:N/AC:L/Au:N/C:P/I:P/A:P)       7.5\nCVE-2012-2336    (AV:N/AC:L/Au:N/C:N/I:N/A:P)       5.0\nCVE-2012-5217    (AV:N/AC:H/Au:N/C:P/I:N/A:N)       2.6\nCVE-2013-2355    (AV:N/AC:M/Au:N/C:P/I:N/A:N)       4.3\nCVE-2013-2356    (AV:N/AC:L/Au:N/C:C/I:N/A:N)       7.8\nCVE-2013-2357    (AV:N/AC:M/Au:S/C:N/I:N/A:C)       6.3\nCVE-2013-2358    (AV:N/AC:M/Au:S/C:N/I:N/A:C)       6.3\nCVE-2013-2359    (AV:N/AC:M/Au:S/C:N/I:N/A:P)       3.5\nCVE-2013-2360    (AV:N/AC:M/Au:S/C:N/I:N/A:P)       3.5\nCVE-2013-2361    (AV:N/AC:M/Au:N/C:N/I:P/A:N)       4.3\nCVE-2013-2362    (AV:L/AC:H/Au:S/C:N/I:N/A:P)       1.0\nCVE-2013-2363    (AV:N/AC:H/Au:N/C:C/I:N/A:P)       6.1\nCVE-2013-2364    (AV:N/AC:L/Au:S/C:N/I:N/A:P)       4.0\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nThe Hewlett-Packard Company thanks agix for working with the TippingPoint\nZero Day Initiative to report vulnerability CVE-2013-2362 to\nsecurity-alert@hp.com\n\nRESOLUTION\n\nHP has made System Management Homepage (SMH) v7.2.1 or subsequent available\nfor Windows and Linux to resolve the vulnerabilities. \n\nInformation and updates for SMH can be found at the following location:\n\nhttp://h18013.www1.hp.com/products/servers/management/agents/index.html\n\nHISTORY\nVersion:1 (rev.1) - 18 July 2013 Initial release\nVersion:2 (rev.2) - 19 July 2013 Corrected CVE-2012-5217 assignment\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2013 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits;damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2012-2336"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          },
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "114261"
          },
          {
            "db": "PACKETSTORM",
            "id": "114259"
          },
          {
            "db": "PACKETSTORM",
            "id": "114260"
          },
          {
            "db": "PACKETSTORM",
            "id": "112597"
          },
          {
            "db": "PACKETSTORM",
            "id": "113885"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          }
        ],
        "trust": 2.52
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2012-2336",
            "trust": 3.4
          },
          {
            "db": "SECUNIA",
            "id": "49014",
            "trust": 1.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#520827",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209",
            "trust": 0.6
          },
          {
            "db": "JUNIPER",
            "id": "JSA10658",
            "trust": 0.3
          },
          {
            "db": "CERT/CC",
            "id": "VU#673343",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "53388",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "123310",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "114261",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "114259",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "114260",
            "trust": 0.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2012/05/09/9",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "112597",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "113885",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "122482",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "114261"
          },
          {
            "db": "PACKETSTORM",
            "id": "114259"
          },
          {
            "db": "PACKETSTORM",
            "id": "114260"
          },
          {
            "db": "PACKETSTORM",
            "id": "112597"
          },
          {
            "db": "PACKETSTORM",
            "id": "113885"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2336"
          }
        ]
      },
      "id": "VAR-201205-0312",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.47077376
      },
      "last_update_date": "2026-04-10T23:08:50.423000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "SUSE-SU-2012:0840",
            "trust": 0.8,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00003.html"
          },
          {
            "title": "PHP 5.4.3 and PHP 5.3.13 Released!",
            "trust": 0.8,
            "url": "http://www.php.net/archive/2012.php#id2012-05-08-1"
          },
          {
            "title": "PHP 5 ChangeLog - Version 5.4.3",
            "trust": 0.8,
            "url": "http://www.php.net/ChangeLog-5.php#5.4.3"
          },
          {
            "title": "PHP 5.4.3",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=43186"
          },
          {
            "title": "PHP 5.4.3",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=43185"
          }
        ],
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2336"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.2,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c03839862"
          },
          {
            "trust": 1.7,
            "url": "https://bugs.php.net/bug.php?id=61910"
          },
          {
            "trust": 1.6,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00004.html"
          },
          {
            "trust": 1.6,
            "url": "http://www.php.net/archive/2012.php#id2012-05-08-1"
          },
          {
            "trust": 1.6,
            "url": "https://bugs.php.net/patch-display.php?bug_id=61910\u0026patch=cve-2012-1823.patch\u0026revision=1336251592\u0026display=1"
          },
          {
            "trust": 1.6,
            "url": "http://www.php.net/changelog-5.php#5.4.3"
          },
          {
            "trust": 1.6,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00003.html"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/49014"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/520827"
          },
          {
            "trust": 0.9,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2336"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu520827/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2336"
          },
          {
            "trust": 0.7,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2336"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2012:1047"
          },
          {
            "trust": 0.6,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=820708"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2012:1045"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/errata/rhsa-2012:1046"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/cve/cve-2012-2336"
          },
          {
            "trust": 0.4,
            "url": "http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2335"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1172"
          },
          {
            "trust": 0.3,
            "url": "http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.hmj%2asm..t.a4jy.6o9k.bw89mq%5f%5fdmtsfto0"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/software/lotus/products/foundations/start/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.parallels.com/en/113818"
          },
          {
            "trust": 0.3,
            "url": "kb.parallels.com/en/116241"
          },
          {
            "trust": 0.3,
            "url": "https://community.rapid7.com/thread/5174"
          },
          {
            "trust": 0.3,
            "url": "http://www.php.net/"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/fulldisclosure/2013/jun/21"
          },
          {
            "trust": 0.3,
            "url": "http://ompldr.org/vzgxxaq"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10658\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100162699"
          },
          {
            "trust": 0.3,
            "url": "https://downloads.avaya.com/css/p8/documents/100165255"
          },
          {
            "trust": 0.3,
            "url": "http://www.h-online.com/security/news/item/critical-open-hole-in-php-creates-risks-update-1567532.html"
          },
          {
            "trust": 0.3,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c03360041"
          },
          {
            "trust": 0.3,
            "url": "http://www.php.net/archive/2012.php#id2012-05-03-1"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21620314"
          },
          {
            "trust": 0.3,
            "url": "http://www.turbolinux.co.jp/security-e/2012/tlsa-2012-14.txt"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/673343"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0057"
          },
          {
            "trust": 0.3,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-0057.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-2336.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.redhat.com/security/data/cve/cve-2011-4153.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-1172.html"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2143"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.3,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-4153"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2386"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/knowledge/articles/11258"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0789"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/team/key/#package"
          },
          {
            "trust": 0.3,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-0789.html"
          },
          {
            "trust": 0.3,
            "url": "http://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2358"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2357"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2362"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2361"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2364"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2363"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2359"
          },
          {
            "trust": 0.2,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2329"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-5217"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2011-3389"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2311"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2356"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2110"
          },
          {
            "trust": 0.2,
            "url": "http://h18013.www1.hp.com/products/servers/management/agents/index.html"
          },
          {
            "trust": 0.2,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.2,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0883"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2355"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-2360"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-2143.html"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/security/data/cve/cve-2010-2950.html"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-0781"
          },
          {
            "trust": 0.2,
            "url": "https://rhn.redhat.com/errata/rhsa-2012-0546.html"
          },
          {
            "trust": 0.2,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-2386.html"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2950"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2013-4821"
          },
          {
            "trust": 0.1,
            "url": "https://www.redhat.com/security/data/cve/cve-2012-0781.html"
          },
          {
            "trust": 0.1,
            "url": "https://rhn.redhat.com/errata/rhsa-2012-1046.html"
          },
          {
            "trust": 0.1,
            "url": "https://rhn.redhat.com/errata/rhsa-2012-0547.html"
          },
          {
            "trust": 0.1,
            "url": "https://rhn.redhat.com/errata/rhsa-2012-1047.html"
          },
          {
            "trust": 0.1,
            "url": "https://rhn.redhat.com/errata/rhsa-2012-1045.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-1823"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-1823"
          },
          {
            "trust": 0.1,
            "url": "http://www.openwall.com/lists/oss-security/2012/05/09/9"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/advisories"
          },
          {
            "trust": 0.1,
            "url": "http://lists.grok.org.uk/full-disclosure-charter.html"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2335"
          },
          {
            "trust": 0.1,
            "url": "http://www.ubuntu.com/usn/usn-1481-1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.5-1ubuntu7.10"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.10-1ubuntu3.2"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.6-13ubuntu3.8"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.3.2-1ubuntu4.17"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/php5/5.2.4-2ubuntu5.25"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2012-2317"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "53388"
          },
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "114261"
          },
          {
            "db": "PACKETSTORM",
            "id": "114259"
          },
          {
            "db": "PACKETSTORM",
            "id": "114260"
          },
          {
            "db": "PACKETSTORM",
            "id": "112597"
          },
          {
            "db": "PACKETSTORM",
            "id": "113885"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2336"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "BID",
            "id": "53388",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "123310",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "114261",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "114259",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "114260",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "112597",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "113885",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "122482",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2012-2336",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2012-05-04T00:00:00",
            "db": "BID",
            "id": "53388",
            "ident": null
          },
          {
            "date": "2013-09-19T22:22:00",
            "db": "PACKETSTORM",
            "id": "123310",
            "ident": null
          },
          {
            "date": "2012-06-28T03:31:36",
            "db": "PACKETSTORM",
            "id": "114261",
            "ident": null
          },
          {
            "date": "2012-06-28T03:31:01",
            "db": "PACKETSTORM",
            "id": "114259",
            "ident": null
          },
          {
            "date": "2012-06-28T03:31:24",
            "db": "PACKETSTORM",
            "id": "114260",
            "ident": null
          },
          {
            "date": "2012-05-10T15:26:54",
            "db": "PACKETSTORM",
            "id": "112597",
            "ident": null
          },
          {
            "date": "2012-06-20T02:58:04",
            "db": "PACKETSTORM",
            "id": "113885",
            "ident": null
          },
          {
            "date": "2013-07-19T19:33:00",
            "db": "PACKETSTORM",
            "id": "122482",
            "ident": null
          },
          {
            "date": "2012-05-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201205-209",
            "ident": null
          },
          {
            "date": "2012-05-14T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2012-002395",
            "ident": null
          },
          {
            "date": "2012-05-11T10:15:48.527000",
            "db": "NVD",
            "id": "CVE-2012-2336",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-04-13T22:15:00",
            "db": "BID",
            "id": "53388",
            "ident": null
          },
          {
            "date": "2023-04-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201205-209",
            "ident": null
          },
          {
            "date": "2012-07-26T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2012-002395",
            "ident": null
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2012-2336",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "114261"
          },
          {
            "db": "PACKETSTORM",
            "id": "114259"
          },
          {
            "db": "PACKETSTORM",
            "id": "114260"
          },
          {
            "db": "PACKETSTORM",
            "id": "112597"
          },
          {
            "db": "PACKETSTORM",
            "id": "113885"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201205-209"
          }
        ],
        "trust": 1.1
      },
      "title": {
        "_id": null,
        "data": "PHP of  sapi/cgi/cgi_main.c Service disruption in  ( Resource consumption ) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2012-002395"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "arbitrary",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "123310"
          },
          {
            "db": "PACKETSTORM",
            "id": "114261"
          },
          {
            "db": "PACKETSTORM",
            "id": "114259"
          },
          {
            "db": "PACKETSTORM",
            "id": "114260"
          },
          {
            "db": "PACKETSTORM",
            "id": "112597"
          },
          {
            "db": "PACKETSTORM",
            "id": "122482"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200609-0708

    Vulnerability from variot - Updated: 2026-04-10 23:03

    Multiple buffer overflows in the Apple Type Services (ATS) server in Mac OS X 10.4 through 10.4.8 allow local users to execute arbitrary code via crafted service requests. A flaw in the OpenSSL library could allow a remote attacker to cause a denial of service on an affected application. These vulnerabilities may allow a local attacker to execute arbitrary code with system privileges. Multiple RSA implementations fail to properly handle RSA signatures. This vulnerability may allow an attacker to forge RSA signatures. Both local and remote vulnerabilities are present. A local attacker can trigger these overflows by sending a specially crafted service request, causing a denial of service or executing arbitrary commands with system privileges

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "openpkg",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 2.4,
            "vendor": "rpath",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "trustix secure linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "apple computer",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.2"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.5"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.6"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.4"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.8"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.1"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.7"
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "apple",
            "version": "10.4.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "appgate network security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "attachmatewrq",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gnutls",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "iaik java group",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "internet consortium",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "intoto",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mozilla",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openwall gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "opera",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "rsa security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ssh security corp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sybase",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vmware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vandyke",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "apple",
            "version": "10.4 to  10.4.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.8"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.9"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.9"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.3"
          },
          {
            "_id": null,
            "model": "directory pro",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cosmicperl",
            "version": "10.0.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.7"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.3.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.0.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.03"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.2.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800296"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4398"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:apple:mac_os_x",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Benjamin WilliamsMu SecurityEric CroninDr. Stephen N. HensonTim\u203b darksock@uhagr.org",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-4398",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.2,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2006-4398",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.2,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "VHN-20506",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:L/AC:L/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2006-4398",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#386964",
                "trust": 0.8,
                "value": "0.32"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#800296",
                "trust": 0.8,
                "value": "8.80"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#845620",
                "trust": 0.8,
                "value": "7.56"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#547300",
                "trust": 0.8,
                "value": "2.53"
              },
              {
                "author": "NVD",
                "id": "CVE-2006-4398",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200611-514",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-20506",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800296"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20506"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4398"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Multiple buffer overflows in the Apple Type Services (ATS) server in Mac OS X 10.4 through 10.4.8 allow local users to execute arbitrary code via crafted service requests. A flaw in the OpenSSL library could allow a remote attacker to cause a denial of service on an affected application.  These vulnerabilities may allow a local attacker to execute arbitrary code with system privileges. Multiple RSA implementations fail to properly handle RSA signatures. This vulnerability may allow an attacker to forge RSA signatures. Both local and remote vulnerabilities are present. A local attacker can trigger these overflows by sending a specially crafted service request, causing a denial of service or executing arbitrary commands with system privileges",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-4398"
          },
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800296"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20506"
          }
        ],
        "trust": 4.86
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#800296",
            "trust": 3.3
          },
          {
            "db": "USCERT",
            "id": "TA06-333A",
            "trust": 2.8
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4398",
            "trust": 2.8
          },
          {
            "db": "SECUNIA",
            "id": "23155",
            "trust": 2.5
          },
          {
            "db": "BID",
            "id": "22083",
            "trust": 2.4
          },
          {
            "db": "BID",
            "id": "21335",
            "trust": 2.0
          },
          {
            "db": "OSVDB",
            "id": "30738",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1017301",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-4750",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "23280",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "23309",
            "trust": 1.6
          },
          {
            "db": "BID",
            "id": "20246",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#386964",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "21709",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22207",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22212",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22116",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22216",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22220",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22330",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22130",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22240",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22259",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22260",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22165",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22166",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22172",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22284",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22186",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22193",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "22094",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "20249",
            "trust": 0.8
          },
          {
            "db": "SECTRACK",
            "id": "1016943",
            "trust": 0.8
          },
          {
            "db": "XF",
            "id": "29237",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514",
            "trust": 0.7
          },
          {
            "db": "CERT/CC",
            "id": "TA06-333A",
            "trust": 0.6
          },
          {
            "db": "APPLE",
            "id": "APPLE-SA-2006-11-28",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-20506",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800296"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20506"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4398"
          }
        ]
      },
      "id": "VAR-200609-0708",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-20506"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:03:52.979000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "APPLE-SA-2006-11-28",
            "trust": 0.8,
            "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-4398"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.8,
            "url": "http://docs.info.apple.com/article.html?artnum=304829"
          },
          {
            "trust": 2.8,
            "url": "http://www.us-cert.gov/cas/techalerts/ta06-333a.html"
          },
          {
            "trust": 2.5,
            "url": "http://www.kb.cert.org/vuls/id/800296"
          },
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/22083"
          },
          {
            "trust": 1.7,
            "url": "http://lists.apple.com/archives/security-announce/2006/nov/msg00001.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/21335"
          },
          {
            "trust": 1.7,
            "url": "http://www.osvdb.org/30738"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1017301"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/23155"
          },
          {
            "trust": 1.6,
            "url": "http://www.openssl.org/news/secadv_20060928.txt"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/23280/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/23309/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2006/4750"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu%23386964/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/20246"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/23155/"
          },
          {
            "trust": 0.8,
            "url": "http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.matasano.com/log/469/many-rsa-signatures-may-be-forgeable-in-openssl-and-elsewhere/"
          },
          {
            "trust": 0.8,
            "url": "http://www.openssl.org/news/secadv_20060905.txt "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/21709/"
          },
          {
            "trust": 0.8,
            "url": "http://www.rsasecurity.com/rsalabs/node.asp?id=2125"
          },
          {
            "trust": 0.8,
            "url": "http://www.ietf.org/rfc/rfc3447.txt"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu%23547300/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-september/049715.html "
          },
          {
            "trust": 0.8,
            "url": "https://issues.rpath.com/browse/rpl-613 "
          },
          {
            "trust": 0.8,
            "url": "http://www.openssl.org/news/secadv_20060928.txt "
          },
          {
            "trust": 0.8,
            "url": "http://kolab.org/security/kolab-vendor-notice-11.txt "
          },
          {
            "trust": 0.8,
            "url": "http://openvpn.net/changelog.html "
          },
          {
            "trust": 0.8,
            "url": "http://www.serv-u.com/releasenotes/ "
          },
          {
            "trust": 0.8,
            "url": "http://openbsd.org/errata.html#openssl2 "
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/20249 "
          },
          {
            "trust": 0.8,
            "url": "http://securitytracker.com/id?1016943 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22130 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22094 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22165 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22186 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22193 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22207 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22259 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22260 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22166 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22172 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22212 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22240 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22216 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22116 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22220 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22284 "
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/22330 "
          },
          {
            "trust": 0.8,
            "url": "http://xforce.iss.net/xforce/xfdb/29237 "
          },
          {
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102668-1"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-4398"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-4398"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/4750"
          },
          {
            "trust": 0.3,
            "url": "http://www.info.apple.com/usen/security/security_updates.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.apple.com/macosx/"
          },
          {
            "trust": 0.3,
            "url": "http://labs.musecurity.com/advisories/mu-200611-01.txt"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800296"
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620"
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300"
          },
          {
            "db": "VULHUB",
            "id": "VHN-20506"
          },
          {
            "db": "BID",
            "id": "21335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4398"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#386964",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#800296",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#845620",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#547300",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-20506",
            "ident": null
          },
          {
            "db": "BID",
            "id": "21335",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2006-001148",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2006-4398",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2006-09-28T00:00:00",
            "db": "CERT/CC",
            "id": "VU#386964",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800296",
            "ident": null
          },
          {
            "date": "2006-09-11T00:00:00",
            "db": "CERT/CC",
            "id": "VU#845620",
            "ident": null
          },
          {
            "date": "2006-09-28T00:00:00",
            "db": "CERT/CC",
            "id": "VU#547300",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "VULHUB",
            "id": "VHN-20506",
            "ident": null
          },
          {
            "date": "2006-11-28T00:00:00",
            "db": "BID",
            "id": "21335",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200611-514",
            "ident": null
          },
          {
            "date": "2012-06-26T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-001148",
            "ident": null
          },
          {
            "date": "2006-11-30T16:28:00",
            "db": "NVD",
            "id": "CVE-2006-4398",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2011-07-22T00:00:00",
            "db": "CERT/CC",
            "id": "VU#386964",
            "ident": null
          },
          {
            "date": "2006-12-20T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800296",
            "ident": null
          },
          {
            "date": "2007-02-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#845620",
            "ident": null
          },
          {
            "date": "2011-07-22T00:00:00",
            "db": "CERT/CC",
            "id": "VU#547300",
            "ident": null
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-20506",
            "ident": null
          },
          {
            "date": "2006-11-30T20:25:00",
            "db": "BID",
            "id": "21335",
            "ident": null
          },
          {
            "date": "2006-11-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200611-514",
            "ident": null
          },
          {
            "date": "2012-06-26T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2006-001148",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2006-4398",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "OpenSSL SSLv2 client code fails to properly check for NULL",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#386964"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200611-514"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201505-0417

    Vulnerability from variot - Updated: 2026-04-10 22:57

    The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM. QEMU is prone to a remote memory-corruption vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts may result in a denial-of-service condition. Relevant releases/architectures:

    Red Hat Enterprise Linux HPC Node EUS (v. 6.5) - i386, x86_64

    1. After installing this update, shut down all running virtual machines. Relevant releases/architectures:

    RHEV Agents (vdsm) - x86_64


    1. Gentoo Linux Security Advisory GLSA 201602-01

                                           https://security.gentoo.org/
    

    Severity: Normal Title: QEMU: Multiple vulnerabilities Date: February 04, 2016 Bugs: #544328, #549404, #557206, #558416, #559656, #560422, #560550, #560760, #566792, #567144, #567828, #567868, #568214, #568226, #568246, #569646, #570110, #570988, #571562, #571564, #571566 ID: 201602-01


    Synopsis

    Multiple vulnerabilities have been found in QEMU, the worst of which may allow a remote attacker to cause a Denial of Service or gain elevated privileges from a guest VM.

    Affected packages

    -------------------------------------------------------------------
     Package              /     Vulnerable     /            Unaffected
    -------------------------------------------------------------------
    

    1 app-emulation/qemu < 2.5.0-r1 >= 2.5.0-r1

    Description

    Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details.

    Workaround

    There is no known workaround at this time.

    Resolution

    All QEMU users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/qemu-2.5.0-r1"

    References

    [ 1 ] CVE-2015-1779 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1779 [ 2 ] CVE-2015-3456 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3456 [ 3 ] CVE-2015-5225 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5225 [ 4 ] CVE-2015-5278 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5278 [ 5 ] CVE-2015-5279 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5279 [ 6 ] CVE-2015-5745 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5745 [ 7 ] CVE-2015-6815 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6815 [ 8 ] CVE-2015-6855 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6855 [ 9 ] CVE-2015-7295 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7295 [ 10 ] CVE-2015-7504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7504 [ 11 ] CVE-2015-7512 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7512 [ 12 ] CVE-2015-7549 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7549 [ 13 ] CVE-2015-8345 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8345 [ 14 ] CVE-2015-8504 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8504 [ 15 ] CVE-2015-8556 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8556 [ 16 ] CVE-2015-8558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8558 [ 17 ] CVE-2015-8567 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8567 [ 18 ] CVE-2015-8568 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8568 [ 19 ] CVE-2015-8666 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8666 [ 20 ] CVE-2015-8701 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8701 [ 21 ] CVE-2015-8743 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8743 [ 22 ] CVE-2015-8744 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8744 [ 23 ] CVE-2015-8745 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8745 [ 24 ] CVE-2016-1568 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1568

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    https://security.gentoo.org/glsa/201602-01

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2016 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5 .

    Background

    VirtualBox is a powerful virtualization product from Oracle. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04706564

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c04706564 Version: 1

    HPSBMU03349 rev.1- HP Helion CloudSystem, Local Denial of Service (DoS), Arbitrary Code Execution

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2015-06-09 Last Updated: 2015-06-09

    Potential Security Impact: Local Denial of Service (DoS), arbitrary code execution

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Helion CloudSystem. The vulnerability could be exploited locally resulting in Denial of Service (DoS) or execution of arbitrary code.

    Notes:

    This is the vulnerability known as "Virtual Environment Neglected Operations Manipulation" also known as "VENOM". This vulnerability exists in the floppy disk controller driver of QEMU, an open-source virtualization technology used to provision guest Virtual Machines. This vulnerability affects all versions of QEMU and could lead to hypervisor breakout, where a user of the guest VM can gain control of the host. HP Helion CloudSystem leverages QEMU as a core part of its virtualization functionality and is therefore affected by this vulnerability.

    References:

    CVE-2015-3456 (SSRT102076)

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP Helion CloudSystem software:

    HP Helion CloudSystem 8.x series

    Note: Only HP CloudSystem deployment using KVM on RHEL version 6.4 or 6.5 in the control plane or the data plane are affected by this vulnerability

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2015-3456 (AV:A/AC:L/Au:S/C:C/I:C/A:C) 7.7 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP recommends following remediation steps to resolve the vulnerability in HP Helion CloudSystem.

    The following steps are recommended by Red Hat ( https://access.redhat.com/articles/1444903 ) and must be applied for each control plane and data plane node that is using KVM for virtualization:

    Login to the node

    Upgrade the QEMU package for your system using the command: 'yum update qemu-kvm'. A full system update may be applied using the command 'yum update'. Refer to the HP Helion CloudSystem administrative guide ( http://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docI d=c04376928 ) for instructions on restarting appliances.

    HISTORY Version:1 (rev.1) - 9 June 2015 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com

    Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins

    Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/

    Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.

    3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX

    Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: kvm security update Advisory ID: RHSA-2015:1003-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-1003.html Issue date: 2015-05-13 CVE Names: CVE-2015-3456 =====================================================================

    1. Summary:

    Updated kvm packages that fix one security issue are now available for Red Hat Enterprise Linux 5.

    Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

    1. Relevant releases/architectures:

    RHEL Desktop Multi OS (v. 5 client) - x86_64 RHEL Virtualization (v. 5 server) - x86_64

    1. Description:

    KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems.

    An out-of-bounds memory access flaw was found in the way QEMU's virtual Floppy Disk Controller (FDC) handled FIFO buffer access while processing certain FDC commands. A privileged guest user could use this flaw to crash the guest or, potentially, execute arbitrary code on the host with the privileges of the host's QEMU process corresponding to the guest. (CVE-2015-3456)

    Red Hat would like to thank Jason Geffner of CrowdStrike for reporting this issue.

    All kvm users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. Note: The procedure in the Solution section must be performed before this update will take effect.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    For details on how to apply this update, refer to:

    https://access.redhat.com/articles/11258

    The following procedure must be performed before this update will take effect:

    1) Stop all KVM guest virtual machines.

    2) Either reboot the hypervisor machine or, as the root user, remove (using "modprobe -r [module]") and reload (using "modprobe [module]") all of the following modules which are currently running (determined using "lsmod"): kvm, ksm, kvm-intel or kvm-amd.

    3) Restart the KVM guest virtual machines.

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1218611 - CVE-2015-3456 qemu: fdc: out-of-bounds fifo buffer memory access

    1. Package List:

    RHEL Desktop Multi OS (v. 5 client):

    Source: kvm-83-272.el5_11.src.rpm

    x86_64: kmod-kvm-83-272.el5_11.x86_64.rpm kmod-kvm-debug-83-272.el5_11.x86_64.rpm kvm-83-272.el5_11.x86_64.rpm kvm-debuginfo-83-272.el5_11.x86_64.rpm kvm-qemu-img-83-272.el5_11.x86_64.rpm kvm-tools-83-272.el5_11.x86_64.rpm

    RHEL Virtualization (v. 5 server):

    Source: kvm-83-272.el5_11.src.rpm

    x86_64: kmod-kvm-83-272.el5_11.x86_64.rpm kmod-kvm-debug-83-272.el5_11.x86_64.rpm kvm-83-272.el5_11.x86_64.rpm kvm-debuginfo-83-272.el5_11.x86_64.rpm kvm-qemu-img-83-272.el5_11.x86_64.rpm kvm-tools-83-272.el5_11.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2015-3456 https://access.redhat.com/security/updates/classification/#important

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iD8DBQFVU1nfXlSAg2UNWIIRAtvxAKCVxqsaYdrCQN16dcpCIKajKnUzHgCfVy1r 6y8+9uFGI3F4Epc74lb8mrg= =sjA3 -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . Berrange discovered a denial of service vulnerability in the VNC web socket decoder.

    For the oldstable distribution (wheezy), these problems have been fixed in version 1.1.2+dfsg-6a+deb7u7 of the qemu source package and in version 1.1.2+dfsg-6+deb7u7 of the qemu-kvm source package. Only CVE-2015-3456 affects oldstable.

    For the stable distribution (jessie), these problems have been fixed in version 1:2.1+dfsg-12.

    For the unstable distribution (sid), these problems will be fixed soon.

    We recommend that you upgrade your qemu packages. ============================================================================ Ubuntu Security Notice USN-2608-1 May 13, 2015

    qemu, qemu-kvm vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 15.04
    • Ubuntu 14.10
    • Ubuntu 14.04 LTS
    • Ubuntu 12.04 LTS

    Summary:

    Several security issues were fixed in QEMU.

    Software Description: - qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer

    Details:

    Jason Geffner discovered that QEMU incorrectly handled the virtual floppy driver. This issue is known as VENOM. In the default installation, when QEMU is used with libvirt, attackers would be isolated by the libvirt AppArmor profile. (CVE-2015-3456)

    Daniel P. Berrange discovered that QEMU incorrectly handled VNC websockets. A remote attacker could use this issue to cause QEMU to consume memory, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-1779)

    Jan Beulich discovered that QEMU, when used with Xen, didn't properly restrict access to PCI command registers. A malicious guest could use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 14.10. (CVE-2015-2756)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 15.04: qemu-system 1:2.2+dfsg-5expubuntu9.1 qemu-system-aarch64 1:2.2+dfsg-5expubuntu9.1 qemu-system-arm 1:2.2+dfsg-5expubuntu9.1 qemu-system-mips 1:2.2+dfsg-5expubuntu9.1 qemu-system-misc 1:2.2+dfsg-5expubuntu9.1 qemu-system-ppc 1:2.2+dfsg-5expubuntu9.1 qemu-system-sparc 1:2.2+dfsg-5expubuntu9.1 qemu-system-x86 1:2.2+dfsg-5expubuntu9.1

    Ubuntu 14.10: qemu-system 2.1+dfsg-4ubuntu6.6 qemu-system-aarch64 2.1+dfsg-4ubuntu6.6 qemu-system-arm 2.1+dfsg-4ubuntu6.6 qemu-system-mips 2.1+dfsg-4ubuntu6.6 qemu-system-misc 2.1+dfsg-4ubuntu6.6 qemu-system-ppc 2.1+dfsg-4ubuntu6.6 qemu-system-sparc 2.1+dfsg-4ubuntu6.6 qemu-system-x86 2.1+dfsg-4ubuntu6.6

    Ubuntu 14.04 LTS: qemu-system 2.0.0+dfsg-2ubuntu1.11 qemu-system-aarch64 2.0.0+dfsg-2ubuntu1.11 qemu-system-arm 2.0.0+dfsg-2ubuntu1.11 qemu-system-mips 2.0.0+dfsg-2ubuntu1.11 qemu-system-misc 2.0.0+dfsg-2ubuntu1.11 qemu-system-ppc 2.0.0+dfsg-2ubuntu1.11 qemu-system-sparc 2.0.0+dfsg-2ubuntu1.11 qemu-system-x86 2.0.0+dfsg-2ubuntu1.11

    Ubuntu 12.04 LTS: qemu-kvm 1.0+noroms-0ubuntu14.22

    After a standard system update you need to restart all QEMU virtual machines to make all the necessary changes

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "xen",
            "version": "4.5.0"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "redhat",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "qemu",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "qemu",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise virtualization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "qemu",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "qemu",
            "version": "2.3.0"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.4.1"
          },
          {
            "_id": null,
            "model": "rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.4.0"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.3.0"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "xen",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "xen",
            "version": "4.2.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "15.04"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.10"
          },
          {
            "_id": null,
            "model": "linux lts",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp4 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "linux enterprise software development kit",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp1 ltss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "linux enterprise expanded support",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "7"
          },
          {
            "_id": null,
            "model": "linux enterprise expanded support",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "6"
          },
          {
            "_id": null,
            "model": "linux enterprise expanded support",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "5"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "12"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "11"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "13.1"
          },
          {
            "_id": null,
            "model": "openstack for rhel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.07"
          },
          {
            "_id": null,
            "model": "openstack for rhel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5.07"
          },
          {
            "_id": null,
            "model": "openstack for rhel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5.06"
          },
          {
            "_id": null,
            "model": "enterprise virtualization",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux virtualization server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux server eus 6.5.z",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux hpc node",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop multi os client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "qemu",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qemu",
            "version": "0"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "8.54"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "8.53"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "7"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "6"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "5"
          },
          {
            "_id": null,
            "model": "northstar controller application",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "smartdatacenter",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "joyent",
            "version": "0"
          },
          {
            "_id": null,
            "model": "public cloud",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "joyent",
            "version": "0"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "pureapplication system",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "powerkvm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.20"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.3.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.1.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0.1"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.3.0.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.1.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.2.0.0"
          },
          {
            "_id": null,
            "model": "flex system manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "1.1.0.0"
          },
          {
            "_id": null,
            "model": "fusioncompute v100r005c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r005c00spc300",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r005c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c10spc600",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c10cp6001",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c10",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c00spc300",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fusioncompute v100r003c00",
            "scope": null,
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "helion openstack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.1.0"
          },
          {
            "_id": null,
            "model": "helion openstack",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0.0"
          },
          {
            "_id": null,
            "model": "helion cloudsystem",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "fortisandbox",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "xenserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "xenserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "xenserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "xenserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "xenserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "7"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "6"
          },
          {
            "_id": null,
            "model": "centos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "centos",
            "version": "5"
          },
          {
            "_id": null,
            "model": "northstar controller application service pack",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "2.1.01"
          },
          {
            "_id": null,
            "model": "fusioncompute v100r005c00cp3001",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "huawei",
            "version": null
          },
          {
            "_id": null,
            "model": "fortisandbox",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.0.3"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "74640"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3456"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "132057"
          },
          {
            "db": "PACKETSTORM",
            "id": "131893"
          },
          {
            "db": "PACKETSTORM",
            "id": "131894"
          },
          {
            "db": "PACKETSTORM",
            "id": "131890"
          },
          {
            "db": "PACKETSTORM",
            "id": "131889"
          }
        ],
        "trust": 0.5
      },
      "cve": "CVE-2015-3456",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "ADJACENT_NETWORK",
                "authentication": "SINGLE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.7,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 5.1,
                "id": "CVE-2015-3456",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.1,
                "vectorString": "AV:A/AC:L/Au:S/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-3456",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201505-207",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2015-3456",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-3456"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3456"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM. QEMU is prone to a remote memory-corruption vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. \nAn attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts may result in a denial-of-service condition. Relevant releases/architectures:\n\nRed Hat Enterprise Linux HPC Node EUS (v. 6.5) - i386, x86_64\n\n3. After installing this\nupdate, shut down all running virtual machines. Relevant releases/architectures:\n\nRHEV Agents (vdsm) - x86_64\n\n3. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 201602-01\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: Normal\n    Title: QEMU: Multiple vulnerabilities\n     Date: February 04, 2016\n     Bugs: #544328, #549404, #557206, #558416, #559656, #560422,\n           #560550, #560760, #566792, #567144, #567828, #567868,\n           #568214, #568226, #568246, #569646, #570110, #570988,\n           #571562, #571564, #571566\n       ID: 201602-01\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nMultiple vulnerabilities have been found in QEMU, the worst of which\nmay allow a remote attacker to cause a Denial of Service or gain\nelevated privileges from a guest VM. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package              /     Vulnerable     /            Unaffected\n    -------------------------------------------------------------------\n  1  app-emulation/qemu          \u003c 2.5.0-r1               \u003e= 2.5.0-r1\n\nDescription\n===========\n\nMultiple vulnerabilities have been discovered in QEMU. Please review\nthe CVE identifiers referenced below for details. \n\nWorkaround\n==========\n\nThere is no known workaround at this time. \n\nResolution\n==========\n\nAll QEMU users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=app-emulation/qemu-2.5.0-r1\"\n\nReferences\n==========\n\n[  1 ] CVE-2015-1779\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1779\n[  2 ] CVE-2015-3456\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3456\n[  3 ] CVE-2015-5225\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5225\n[  4 ] CVE-2015-5278\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5278\n[  5 ] CVE-2015-5279\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5279\n[  6 ] CVE-2015-5745\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5745\n[  7 ] CVE-2015-6815\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6815\n[  8 ] CVE-2015-6855\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-6855\n[  9 ] CVE-2015-7295\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7295\n[ 10 ] CVE-2015-7504\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7504\n[ 11 ] CVE-2015-7512\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7512\n[ 12 ] CVE-2015-7549\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-7549\n[ 13 ] CVE-2015-8345\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8345\n[ 14 ] CVE-2015-8504\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8504\n[ 15 ] CVE-2015-8556\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8556\n[ 16 ] CVE-2015-8558\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8558\n[ 17 ] CVE-2015-8567\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8567\n[ 18 ] CVE-2015-8568\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8568\n[ 19 ] CVE-2015-8666\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8666\n[ 20 ] CVE-2015-8701\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8701\n[ 21 ] CVE-2015-8743\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8743\n[ 22 ] CVE-2015-8744\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8744\n[ 23 ] CVE-2015-8745\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-8745\n[ 24 ] CVE-2016-1568\n       http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-1568\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/201602-01\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2016 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. \n\nBackground\n==========\n\nVirtualBox is a powerful virtualization product from Oracle. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04706564\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04706564\nVersion: 1\n\nHPSBMU03349 rev.1- HP Helion CloudSystem, Local Denial of Service (DoS),\nArbitrary Code Execution\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2015-06-09\nLast Updated: 2015-06-09\n\nPotential Security Impact: Local Denial of Service (DoS), arbitrary code\nexecution\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP Helion\nCloudSystem. The vulnerability could be exploited locally resulting in Denial\nof Service (DoS) or execution of arbitrary code. \n\nNotes:\n\nThis is the vulnerability known as \"Virtual Environment Neglected Operations\nManipulation\" also known as \"VENOM\". \nThis vulnerability exists in the floppy disk controller driver of QEMU, an\nopen-source virtualization technology used to provision guest Virtual\nMachines. \nThis vulnerability affects all versions of QEMU and could lead to hypervisor\nbreakout, where a user of the guest VM can gain control of the host. HP\nHelion CloudSystem leverages QEMU as a core part of its virtualization\nfunctionality and is therefore affected by this vulnerability. \n\nReferences:\n\nCVE-2015-3456 (SSRT102076)\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP Helion CloudSystem software:\n\nHP Helion CloudSystem 8.x series\n\nNote: Only HP CloudSystem deployment using KVM on RHEL version 6.4 or 6.5 in\nthe control plane or the data plane are affected by this vulnerability\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2015-3456    (AV:A/AC:L/Au:S/C:C/I:C/A:C)       7.7\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP recommends following remediation steps to resolve the vulnerability in HP\nHelion CloudSystem. \n\nThe following steps are recommended by Red Hat (\nhttps://access.redhat.com/articles/1444903 ) and must be applied for each\ncontrol plane and data plane node that is using KVM for virtualization:\n\nLogin to the node\n\nUpgrade the QEMU package for your system using the command: \u0027yum update\nqemu-kvm\u0027. A full system update may be applied using the command \u0027yum\nupdate\u0027. Refer to the HP Helion CloudSystem administrative\nguide ( http://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docI\nd=c04376928 ) for instructions on restarting appliances. \n\nHISTORY\nVersion:1 (rev.1) - 9 June 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: kvm security update\nAdvisory ID:       RHSA-2015:1003-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://rhn.redhat.com/errata/RHSA-2015-1003.html\nIssue date:        2015-05-13\nCVE Names:         CVE-2015-3456 \n=====================================================================\n\n1. Summary:\n\nUpdated kvm packages that fix one security issue are now available for Red\nHat Enterprise Linux 5. \n\nRed Hat Product Security has rated this update as having Important security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section. \n\n2. Relevant releases/architectures:\n\nRHEL Desktop Multi OS (v. 5 client) - x86_64\nRHEL Virtualization (v. 5 server) - x86_64\n\n3. Description:\n\nKVM (Kernel-based Virtual Machine) is a full virtualization solution for\nLinux on AMD64 and Intel 64 systems. \n\nAn out-of-bounds memory access flaw was found in the way QEMU\u0027s virtual\nFloppy Disk Controller (FDC) handled FIFO buffer access while processing\ncertain FDC commands. A privileged guest user could use this flaw to crash\nthe guest or, potentially, execute arbitrary code on the host with the\nprivileges of the host\u0027s QEMU process corresponding to the guest. \n(CVE-2015-3456)\n\nRed Hat would like to thank Jason Geffner of CrowdStrike for reporting\nthis issue. \n\nAll kvm users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. Note: The procedure in\nthe Solution section must be performed before this update will take effect. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe following procedure must be performed before this update will take\neffect:\n\n1) Stop all KVM guest virtual machines. \n\n2) Either reboot the hypervisor machine or, as the root user, remove (using\n\"modprobe -r [module]\") and reload (using \"modprobe [module]\") all of the\nfollowing modules which are currently running (determined using \"lsmod\"):\nkvm, ksm, kvm-intel or kvm-amd. \n\n3) Restart the KVM guest virtual machines. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1218611 - CVE-2015-3456 qemu: fdc: out-of-bounds fifo buffer memory access\n\n6. Package List:\n\nRHEL Desktop Multi OS (v. 5 client):\n\nSource:\nkvm-83-272.el5_11.src.rpm\n\nx86_64:\nkmod-kvm-83-272.el5_11.x86_64.rpm\nkmod-kvm-debug-83-272.el5_11.x86_64.rpm\nkvm-83-272.el5_11.x86_64.rpm\nkvm-debuginfo-83-272.el5_11.x86_64.rpm\nkvm-qemu-img-83-272.el5_11.x86_64.rpm\nkvm-tools-83-272.el5_11.x86_64.rpm\n\nRHEL Virtualization (v. 5 server):\n\nSource:\nkvm-83-272.el5_11.src.rpm\n\nx86_64:\nkmod-kvm-83-272.el5_11.x86_64.rpm\nkmod-kvm-debug-83-272.el5_11.x86_64.rpm\nkvm-83-272.el5_11.x86_64.rpm\nkvm-debuginfo-83-272.el5_11.x86_64.rpm\nkvm-qemu-img-83-272.el5_11.x86_64.rpm\nkvm-tools-83-272.el5_11.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2015-3456\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFVU1nfXlSAg2UNWIIRAtvxAKCVxqsaYdrCQN16dcpCIKajKnUzHgCfVy1r\n6y8+9uFGI3F4Epc74lb8mrg=\n=sjA3\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. Berrange discovered a denial of service vulnerability in\n    the VNC web socket decoder. \n\nFor the oldstable distribution (wheezy), these problems have been fixed\nin version 1.1.2+dfsg-6a+deb7u7 of the qemu source package and in version\n1.1.2+dfsg-6+deb7u7 of the qemu-kvm source package. Only CVE-2015-3456\naffects oldstable. \n\nFor the stable distribution (jessie), these problems have been fixed in\nversion 1:2.1+dfsg-12. \n\nFor the unstable distribution (sid), these problems will be fixed soon. \n\nWe recommend that you upgrade your qemu packages. ============================================================================\nUbuntu Security Notice USN-2608-1\nMay 13, 2015\n\nqemu, qemu-kvm vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 15.04\n- Ubuntu 14.10\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in QEMU. \n\nSoftware Description:\n- qemu: Machine emulator and virtualizer\n- qemu-kvm: Machine emulator and virtualizer\n\nDetails:\n\nJason Geffner discovered that QEMU incorrectly handled the virtual floppy\ndriver. This issue is known as VENOM. In the default installation,\nwhen QEMU is used with libvirt, attackers would be isolated by the libvirt\nAppArmor profile. (CVE-2015-3456)\n\nDaniel P. Berrange discovered that QEMU incorrectly handled VNC websockets. \nA remote attacker could use this issue to cause QEMU to consume memory,\nresulting in a denial of service. This issue only affected Ubuntu 14.04\nLTS, Ubuntu 14.10 and Ubuntu 15.04. (CVE-2015-1779)\n\nJan Beulich discovered that QEMU, when used with Xen, didn\u0027t properly\nrestrict access to PCI command registers. A malicious guest could use this\nissue to cause a denial of service. This issue only affected Ubuntu 14.04\nLTS and Ubuntu 14.10. (CVE-2015-2756)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 15.04:\n  qemu-system                     1:2.2+dfsg-5expubuntu9.1\n  qemu-system-aarch64             1:2.2+dfsg-5expubuntu9.1\n  qemu-system-arm                 1:2.2+dfsg-5expubuntu9.1\n  qemu-system-mips                1:2.2+dfsg-5expubuntu9.1\n  qemu-system-misc                1:2.2+dfsg-5expubuntu9.1\n  qemu-system-ppc                 1:2.2+dfsg-5expubuntu9.1\n  qemu-system-sparc               1:2.2+dfsg-5expubuntu9.1\n  qemu-system-x86                 1:2.2+dfsg-5expubuntu9.1\n\nUbuntu 14.10:\n  qemu-system                     2.1+dfsg-4ubuntu6.6\n  qemu-system-aarch64             2.1+dfsg-4ubuntu6.6\n  qemu-system-arm                 2.1+dfsg-4ubuntu6.6\n  qemu-system-mips                2.1+dfsg-4ubuntu6.6\n  qemu-system-misc                2.1+dfsg-4ubuntu6.6\n  qemu-system-ppc                 2.1+dfsg-4ubuntu6.6\n  qemu-system-sparc               2.1+dfsg-4ubuntu6.6\n  qemu-system-x86                 2.1+dfsg-4ubuntu6.6\n\nUbuntu 14.04 LTS:\n  qemu-system                     2.0.0+dfsg-2ubuntu1.11\n  qemu-system-aarch64             2.0.0+dfsg-2ubuntu1.11\n  qemu-system-arm                 2.0.0+dfsg-2ubuntu1.11\n  qemu-system-mips                2.0.0+dfsg-2ubuntu1.11\n  qemu-system-misc                2.0.0+dfsg-2ubuntu1.11\n  qemu-system-ppc                 2.0.0+dfsg-2ubuntu1.11\n  qemu-system-sparc               2.0.0+dfsg-2ubuntu1.11\n  qemu-system-x86                 2.0.0+dfsg-2ubuntu1.11\n\nUbuntu 12.04 LTS:\n  qemu-kvm                        1.0+noroms-0ubuntu14.22\n\nAfter a standard system update you need to restart all QEMU virtual\nmachines to make all the necessary changes",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-3456"
          },
          {
            "db": "BID",
            "id": "74640"
          },
          {
            "db": "VULMON",
            "id": "CVE-2015-3456"
          },
          {
            "db": "PACKETSTORM",
            "id": "132057"
          },
          {
            "db": "PACKETSTORM",
            "id": "131893"
          },
          {
            "db": "PACKETSTORM",
            "id": "131894"
          },
          {
            "db": "PACKETSTORM",
            "id": "131890"
          },
          {
            "db": "PACKETSTORM",
            "id": "135598"
          },
          {
            "db": "PACKETSTORM",
            "id": "140113"
          },
          {
            "db": "PACKETSTORM",
            "id": "132205"
          },
          {
            "db": "PACKETSTORM",
            "id": "131889"
          },
          {
            "db": "PACKETSTORM",
            "id": "132083"
          },
          {
            "db": "PACKETSTORM",
            "id": "131879"
          },
          {
            "db": "PACKETSTORM",
            "id": "131899"
          }
        ],
        "trust": 2.25
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=37053",
            "trust": 0.1,
            "type": "exploit"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-3456"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-3456",
            "trust": 3.1
          },
          {
            "db": "BID",
            "id": "74640",
            "trust": 2.0
          },
          {
            "db": "JUNIPER",
            "id": "JSA10783",
            "trust": 2.0
          },
          {
            "db": "SECTRACK",
            "id": "1032917",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1032306",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1032311",
            "trust": 1.7
          },
          {
            "db": "EXPLOIT-DB",
            "id": "37053",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10693",
            "trust": 1.7
          },
          {
            "db": "MCAFEE",
            "id": "SB10118",
            "trust": 1.7
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207",
            "trust": 0.6
          },
          {
            "db": "VULMON",
            "id": "CVE-2015-3456",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132057",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131893",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131894",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131890",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "135598",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "140113",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132205",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131889",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "132083",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131879",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "131899",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-3456"
          },
          {
            "db": "BID",
            "id": "74640"
          },
          {
            "db": "PACKETSTORM",
            "id": "132057"
          },
          {
            "db": "PACKETSTORM",
            "id": "131893"
          },
          {
            "db": "PACKETSTORM",
            "id": "131894"
          },
          {
            "db": "PACKETSTORM",
            "id": "131890"
          },
          {
            "db": "PACKETSTORM",
            "id": "135598"
          },
          {
            "db": "PACKETSTORM",
            "id": "140113"
          },
          {
            "db": "PACKETSTORM",
            "id": "132205"
          },
          {
            "db": "PACKETSTORM",
            "id": "131889"
          },
          {
            "db": "PACKETSTORM",
            "id": "132083"
          },
          {
            "db": "PACKETSTORM",
            "id": "131879"
          },
          {
            "db": "PACKETSTORM",
            "id": "131899"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3456"
          }
        ]
      },
      "id": "VAR-201505-0417",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.36158728999999995
      },
      "last_update_date": "2026-04-10T22:57:00.870000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "xsa133-qemuu",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=55519"
          },
          {
            "title": "xsa133-qemut",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=55518"
          },
          {
            "title": "xsa133-qemuu-4.3-4.2",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=55520"
          },
          {
            "title": "qemu.git-e907746266721f305d67bc0718795fedee2e824c",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=55517"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2016/05/05/poc_exploit_tripled_2015_study/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2015/05/19/oracle_patches_venom/"
          },
          {
            "title": "The Register",
            "trust": 0.2,
            "url": "https://www.theregister.co.uk/2015/05/14/venom_analysis/"
          },
          {
            "title": "Debian CVElist Bug Report Logs: virtualbox: CVE-2015-3456: floppy driver host code execution",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1e9cefc84b9a72ae90225e9ff55d95b7"
          },
          {
            "title": "Debian Security Advisories: DSA-3262-1 xen -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=062e555c99e007ed070757c824f250eb"
          },
          {
            "title": "Debian Security Advisories: DSA-3274-1 virtualbox -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=13673fabccef0c794fd2bc2944597470"
          },
          {
            "title": "Ubuntu Security Notice: qemu, qemu-kvm vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2608-1"
          },
          {
            "title": "Debian Security Advisories: DSA-3259-1 qemu -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=57edcd554beef990c5db7c77e4410e91"
          },
          {
            "title": "Debian CVElist Bug Report Logs: qemu: CVE-2014-9718 CVE-2015-1779",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=a8c61c5fbe108faa83788a9a61ccb677"
          },
          {
            "title": "Symantec Security Advisories: SA95 : VENOM Vulnerability in Virtualization Platforms",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories\u0026qid=015b922e5570d0f4c9f66b103d8e694a"
          },
          {
            "title": "Oracle: Oracle Security Alert for CVE-2015-3456",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=222bdb74a04df3dae048eda54c80f9ea"
          },
          {
            "title": "Oracle: Oracle Critical Patch Update Advisory - July 2015",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=459961024c4bdce7bb3a1a40a65a6f2e"
          },
          {
            "title": "elysiumVM",
            "trust": 0.1,
            "url": "https://github.com/cyberlifetech/elysiumVM "
          },
          {
            "title": "cve-2015-3456",
            "trust": 0.1,
            "url": "https://github.com/vincentbernat/cve-2015-3456 "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/RUB-SysSec/Hypercube "
          },
          {
            "title": "laputa",
            "trust": 0.1,
            "url": "https://github.com/takuzoo3868/laputa "
          },
          {
            "title": "cookbook-xs-maintenance",
            "trust": 0.1,
            "url": "https://github.com/pigram86/cookbook-xs-maintenance "
          },
          {
            "title": "rhsecapi",
            "trust": 0.1,
            "url": "https://github.com/RedHatOfficial/rhsecapi "
          },
          {
            "title": "cve-pylib",
            "trust": 0.1,
            "url": "https://github.com/RedHatProductSecurity/cve-pylib "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-3456"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-3456"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.6,
            "url": "http://support.citrix.com/article/ctx201078"
          },
          {
            "trust": 2.3,
            "url": "http://www.debian.org/security/2015/dsa-3274"
          },
          {
            "trust": 2.3,
            "url": "http://www.securityfocus.com/bid/74640"
          },
          {
            "trust": 2.3,
            "url": "http://www.debian.org/security/2015/dsa-3259"
          },
          {
            "trust": 2.3,
            "url": "http://www.debian.org/security/2015/dsa-3262"
          },
          {
            "trust": 2.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1000.html"
          },
          {
            "trust": 2.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1001.html"
          },
          {
            "trust": 2.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1004.html"
          },
          {
            "trust": 2.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0999.html"
          },
          {
            "trust": 2.0,
            "url": "http://xenbits.xen.org/xsa/advisory-133.html"
          },
          {
            "trust": 2.0,
            "url": "https://securityblog.redhat.com/2015/05/13/venom-dont-get-bitten/"
          },
          {
            "trust": 2.0,
            "url": "http://venom.crowdstrike.com/"
          },
          {
            "trust": 2.0,
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html"
          },
          {
            "trust": 2.0,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1011.html"
          },
          {
            "trust": 1.8,
            "url": "https://access.redhat.com/articles/1444903"
          },
          {
            "trust": 1.8,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1003.html"
          },
          {
            "trust": 1.8,
            "url": "http://www.ubuntu.com/usn/usn-2608-1"
          },
          {
            "trust": 1.8,
            "url": "https://www.exploit-db.com/exploits/37053/"
          },
          {
            "trust": 1.8,
            "url": "https://security.gentoo.org/glsa/201612-27"
          },
          {
            "trust": 1.8,
            "url": "https://security.gentoo.org/glsa/201602-01"
          },
          {
            "trust": 1.7,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-1002.html"
          },
          {
            "trust": 1.7,
            "url": "http://rhn.redhat.com/errata/rhsa-2015-0998.html"
          },
          {
            "trust": 1.7,
            "url": "https://www.suse.com/security/cve/cve-2015-3456.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00021.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00019.html"
          },
          {
            "trust": 1.7,
            "url": "http://marc.info/?l=bugtraq\u0026m=143229451215900\u0026w=2"
          },
          {
            "trust": 1.7,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10118"
          },
          {
            "trust": 1.7,
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-may/158072.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00042.html"
          },
          {
            "trust": 1.7,
            "url": "https://support.lenovo.com/us/en/product_security/venom"
          },
          {
            "trust": 1.7,
            "url": "http://marc.info/?l=bugtraq\u0026m=143387998230996\u0026w=2"
          },
          {
            "trust": 1.7,
            "url": "http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-438937.htm"
          },
          {
            "trust": 1.7,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10693"
          },
          {
            "trust": 1.7,
            "url": "https://bto.bluecoat.com/security-advisory/sa95"
          },
          {
            "trust": 1.7,
            "url": "http://www.fortiguard.com/advisory/2015-05-19-cve-2015-3456-venom-vulnerability"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-updates/2015-08/msg00021.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00001.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1032311"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1032306"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00018.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00014.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00013.html"
          },
          {
            "trust": 1.7,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00009.html"
          },
          {
            "trust": 1.7,
            "url": "https://kb.juniper.net/jsa10783"
          },
          {
            "trust": 1.7,
            "url": "https://security.gentoo.org/glsa/201604-03"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1032917"
          },
          {
            "trust": 1.7,
            "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1128-security-advisory-10"
          },
          {
            "trust": 1.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3456"
          },
          {
            "trust": 1.0,
            "url": "http://git.qemu.org/?p=qemu.git%3ba=commitdiff%3bh=e907746266721f305d67bc0718795fedee2e824c"
          },
          {
            "trust": 0.7,
            "url": "http://git.qemu.org/?p=qemu.git;a=commitdiff;h=e907746266721f305d67bc0718795fedee2e824c"
          },
          {
            "trust": 0.5,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.5,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/cve/cve-2015-3456"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.4,
            "url": "https://rhn.redhat.com/errata/rhsa-2015-1031.html"
          },
          {
            "trust": 0.4,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.3,
            "url": "http://git.qemu.org/?p=qemu.git;a=commit;h=e907746266721f305d67bc0718795fedee2e824c"
          },
          {
            "trust": 0.3,
            "url": "http://wiki.qemu.org/main_page"
          },
          {
            "trust": 0.3,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10783\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.3,
            "url": "http://www.fortiguard.com/advisory/fg-ir-15-012/"
          },
          {
            "trust": 0.3,
            "url": "http://seclists.org/bugtraq/2015/may/129"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04706564"
          },
          {
            "trust": 0.3,
            "url": "https://www.suse.com/support/kb/doc.php?id=7016497"
          },
          {
            "trust": 0.3,
            "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/archive/hw-438937.htm"
          },
          {
            "trust": 0.3,
            "url": "https://help.joyent.com/entries/68099220-security-advisory-on-venom-cve-2015-3456-in-kvm-qemu"
          },
          {
            "trust": 0.3,
            "url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5098681"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21903743"
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022292"
          },
          {
            "trust": 0.3,
            "url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-notices/archive/hw-428704.htm"
          },
          {
            "trust": 0.3,
            "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150889-1.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150943-1.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150896-1.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150889-2.html"
          },
          {
            "trust": 0.3,
            "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150944-1.html"
          },
          {
            "trust": 0.3,
            "url": "https://www-304.ibm.com/connections/blogs/psirt/entry/venom_cve_2015_3456?lang=en_us"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-1779"
          },
          {
            "trust": 0.2,
            "url": "https://security.gentoo.org/"
          },
          {
            "trust": 0.2,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.2,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3456"
          },
          {
            "trust": 0.2,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.2,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-2756"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/119.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/cyberlifetech/elysiumvm"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=38855"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/2608-1/"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-1779"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7549"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8558"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7504"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8345"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5278"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8745"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5278"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8701"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5279"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7512"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8568"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-6815"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8745"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7295"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5225"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8345"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8568"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8567"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7504"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8567"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-6855"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5745"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8504"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8556"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8743"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1568"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-1568"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5279"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8556"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5225"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-6815"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7295"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8666"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8701"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8504"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8558"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-7512"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8743"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-8744"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5745"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-6855"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-7549"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8666"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-8744"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5611"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5610"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0981"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6595"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0418"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6590"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0983"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-5608"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-0981"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0377"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0377"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-0427"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5613"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6588"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6595"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0427"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6589"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0983"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-5610"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5608"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0418"
          },
          {
            "trust": 0.1,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-6588"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6590"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-5613"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-5611"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-6589"
          },
          {
            "trust": 0.1,
            "url": "http://h20564.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?doci"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.1,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-9718"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.11"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu/1:2.2+dfsg-5expubuntu9.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu/2.1+dfsg-4ubuntu6.6"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/qemu-kvm/1.0+noroms-0ubuntu14.22"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2015-3456"
          },
          {
            "db": "BID",
            "id": "74640"
          },
          {
            "db": "PACKETSTORM",
            "id": "132057"
          },
          {
            "db": "PACKETSTORM",
            "id": "131893"
          },
          {
            "db": "PACKETSTORM",
            "id": "131894"
          },
          {
            "db": "PACKETSTORM",
            "id": "131890"
          },
          {
            "db": "PACKETSTORM",
            "id": "135598"
          },
          {
            "db": "PACKETSTORM",
            "id": "140113"
          },
          {
            "db": "PACKETSTORM",
            "id": "132205"
          },
          {
            "db": "PACKETSTORM",
            "id": "131889"
          },
          {
            "db": "PACKETSTORM",
            "id": "132083"
          },
          {
            "db": "PACKETSTORM",
            "id": "131879"
          },
          {
            "db": "PACKETSTORM",
            "id": "131899"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3456"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2015-3456",
            "ident": null
          },
          {
            "db": "BID",
            "id": "74640",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132057",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131893",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131894",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131890",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "135598",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "140113",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132205",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131889",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "132083",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131879",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "131899",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3456",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2015-05-13T00:00:00",
            "db": "VULMON",
            "id": "CVE-2015-3456",
            "ident": null
          },
          {
            "date": "2015-05-13T00:00:00",
            "db": "BID",
            "id": "74640",
            "ident": null
          },
          {
            "date": "2015-05-28T05:28:18",
            "db": "PACKETSTORM",
            "id": "132057",
            "ident": null
          },
          {
            "date": "2015-05-13T19:45:32",
            "db": "PACKETSTORM",
            "id": "131893",
            "ident": null
          },
          {
            "date": "2015-05-13T19:45:39",
            "db": "PACKETSTORM",
            "id": "131894",
            "ident": null
          },
          {
            "date": "2015-05-13T19:45:08",
            "db": "PACKETSTORM",
            "id": "131890",
            "ident": null
          },
          {
            "date": "2016-02-04T21:45:16",
            "db": "PACKETSTORM",
            "id": "135598",
            "ident": null
          },
          {
            "date": "2016-12-12T04:22:22",
            "db": "PACKETSTORM",
            "id": "140113",
            "ident": null
          },
          {
            "date": "2015-06-10T01:23:25",
            "db": "PACKETSTORM",
            "id": "132205",
            "ident": null
          },
          {
            "date": "2015-05-13T19:44:59",
            "db": "PACKETSTORM",
            "id": "131889",
            "ident": null
          },
          {
            "date": "2015-05-29T23:37:29",
            "db": "PACKETSTORM",
            "id": "132083",
            "ident": null
          },
          {
            "date": "2015-05-13T17:43:32",
            "db": "PACKETSTORM",
            "id": "131879",
            "ident": null
          },
          {
            "date": "2015-05-13T19:17:35",
            "db": "PACKETSTORM",
            "id": "131899",
            "ident": null
          },
          {
            "date": "2015-05-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201505-207",
            "ident": null
          },
          {
            "date": "2015-05-13T18:59:00.157000",
            "db": "NVD",
            "id": "CVE-2015-3456",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-11-17T00:00:00",
            "db": "VULMON",
            "id": "CVE-2015-3456",
            "ident": null
          },
          {
            "date": "2017-04-18T00:05:00",
            "db": "BID",
            "id": "74640",
            "ident": null
          },
          {
            "date": "2021-11-08T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201505-207",
            "ident": null
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-3456",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "specific network environment",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "QEMU Floppy Disk Controller Buffer error vulnerability",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201505-207"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "_id": null,
        "data": "arbitrary",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "132057"
          },
          {
            "db": "PACKETSTORM",
            "id": "131893"
          },
          {
            "db": "PACKETSTORM",
            "id": "131894"
          },
          {
            "db": "PACKETSTORM",
            "id": "131890"
          },
          {
            "db": "PACKETSTORM",
            "id": "132205"
          },
          {
            "db": "PACKETSTORM",
            "id": "131889"
          },
          {
            "db": "PACKETSTORM",
            "id": "131899"
          }
        ],
        "trust": 0.7
      }
    }

    VAR-200707-0675

    Vulnerability from variot - Updated: 2026-04-10 22:49

    The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug.". Deficiencies in the DNS protocol and common DNS implementations facilitate DNS cache poisoning attacks. ISC (Internet Systems Consortiuim) BIND generates cryptographically weak DNS query IDs which could allow a remote attacker to poison DNS caches. In IP NAT filtering in Sun Solaris 10 and OpenSolaris series products, when a DNS server runs NAT, it incorrectly changes the original address of the data packet. When the destination address is a DNS port, it will allow remote attackers to bypass CVE-2008 -1447 security protection. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks

    Advisory ID: cisco-sa-20080708-dns

    http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml

    Revision 1.0

    For Public Release 2008 July 08 1800 UTC (GMT)

    Summary

    Multiple Cisco products are vulnerable to DNS cache poisoning attacks due to their use of insufficiently randomized DNS transaction IDs and UDP source ports in the DNS queries that they produce, which may allow an attacker to more easily forge DNS answers that can poison DNS caches.

    To exploit this vulnerability an attacker must be able to cause a vulnerable DNS server to perform recursive DNS queries. Therefore, DNS servers that are only authoritative, or servers where recursion is not allowed, are not affected.

    Cisco has released free software updates that address this vulnerability.

    This advisory is posted at http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml.

    This security advisory is being published simultaneously with announcements from other affected organizations. Products that process DNS messages with the RD flag set will attempt to answer the question asked on behalf of the client. A product is only affected if using a vulnerable implementation of the DNS protocol, the DNS server functionality for the product is enabled, and the DNS feature for the product is configured to process recursive DNS query messages.

    Vulnerable Products +------------------

    The following Cisco products are capable of acting as DNS servers and have been found to have the DNS implementation weakness that makes some types of DNS cache poisoning attacks more likely to succeed:

    • Cisco IOS Software

      A device that is running Cisco IOS Software will be affected if it is running a vulnerable version and if it is acting as a DNS server.

      All Cisco IOS Software releases that support the DNS server functionality and that have not had their DNS implementation improved are affected. For information about specific fixed versions, please refer to the Software Versions and Fixes section.

      A device that is running Cisco IOS Software is configured to act as a DNS server if the command "ip dns server" is present in the configuration. This command is not enabled by default.

    • Cisco Network Registrar

      All Cisco Network Registrar versions are affected, and DNS services are enabled by default.

      The DNS server on CNR is enabled via the command-line interface (CLI) commands "server dns enable start-on-reboot" or "dns enable start-on-reboot" or via the web management interface in the Servers page by selecting the appropriate "Start," "Stop," or "Reload" button.

    • Cisco Application and Content Networking System

      All Cisco Application and Content Networking System (ACNS) versions are affected; DNS services are disabled by default.

      ACNS is configured to act as a DNS server if the command "dns enable" is present in the configuration.

    • Cisco Global Site Selector Used in Combination with Cisco Network Registrar

      The Cisco Global Site Selector (GSS) is affected when it is used in combination with Cisco Network Registrar software to provide a more complete DNS solution. Fixed software would come in the form of an update of the Cisco Network Registrar software rather than an update of the GSS software.

    Products Confirmed Not Vulnerable +--------------------------------

    Products that do not offer DNS server capabilities are not affected by this vulnerability.

    The Cisco GSS by itself is not affected by this vulnerability. However, it is affected when it is used with Cisco Network Registrar software.

    No other Cisco products are currently known to be affected by these vulnerabilities.

    Details

    The Domain Name System is an integral part of networks that are based on TCP/IP such as the Internet. Simply stated, the Domain Name System is a hierarchical database that contains mappings of hostnames and IP addresses. When handling a query from a DNS client, a DNS server can look into its portion of the global DNS database (if the query is for a portion of the DNS database for which the DNS server is authoritative), or it can relay the query to other DNS servers (if it is configured to do so and if the query is for a portion of the DNS database for which the DNS server is not authoritative.)

    Because of the processing time and bandwidth that is associated with handling a DNS query, most DNS servers locally store responses that are received from other DNS servers. The area where these responses are stored locally is called a "cache." Once a response is stored in a cache, the DNS server can use the locally stored response for a certain time (called the "time to live") before having to query DNS servers again to refresh the local (cached) copy of the response. For example, if www.example.com is mapped to the IP address 192.168.0.1 and this mapping is present in the cache of a DNS server, an attacker who succeeds in poisoning the DNS cache of this server may be able to map www.example.com to 10.0.0.1 instead. If this happens, a user who is trying to visit www.example.com may end up contacting the wrong web server. The fundamental implementation weakness is that the DNS transaction ID and source port number used to validate DNS responses are not sufficiently randomized and can easily be predicted, which allows an attacker to create forged responses to DNS queries that will match the expected values. The DNS server will consider such responses to be valid.

    The following Cisco products that offer DNS server functionality have been found to be susceptible to DNS cache poisoning attacks:

    • Cisco IOS Software: The vulnerability documented in Cisco bug ID CSCso81854.

    • Cisco Network Registrar: The vulnerability documented in Cisco bug ID CSCsq01298.

    • Cisco Application and Content Networking System (ACNS): The vulnerability documented in Cisco bug ID CSCsq21930.

    This vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID CVE-2008-1447.

    Vulnerability Scoring Details +----------------------------

    Cisco has provided scores for the vulnerabilities in this advisory based on the Common Vulnerability Scoring System (CVSS). The CVSS scoring in this Security Advisory is done in accordance with CVSS version 2.0.

    CVSS is a standards-based scoring method that conveys vulnerability severity and helps determine urgency and priority of response.

    Cisco has provided a base and temporal score. Customers can then compute environmental scores to assist in determining the impact of the vulnerability in individual networks.

    Cisco has provided an FAQ to answer additional questions regarding CVSS at

    http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html

    Cisco has also provided a CVSS calculator to help compute the environmental impact for individual networks at

    http://intellishield.cisco.com/security/alertmanager/cvss

    Cisco Bugs:

    • DNS cache prone to poisoning/forged answers attacks (CSCsq21930)

    • DNS susceptible to forged query response attacks (CSCsq01298)

    • Need to make DNS implementation more resilient against forged answers (CSCso81854)

    CVSS Base Score - 6.4 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - None Integrity Impact - Partial Availability Impact - Partial

    CVSS Temporal Score - 5.3 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed

    (same score for the three Cisco bugs listed above.)

    Impact

    Successful exploitation of the vulnerability described in this document may result in invalid hostname-to-IP address mappings in the cache of an affected DNS server. This may lead users of this DNS server to contact the wrong provider of network services. The ultimate impact varies greatly, ranging from a simple denial of service (for example, making www.example.com resolve to 127.0.0.1) to phishing and financial fraud.

    Software Versions and Fixes

    When considering software upgrades, also consult http://www.cisco.com/go/psirt and any subsequent advisories to determine exposure and a complete upgrade solution.

    In all cases, customers should exercise caution to be certain the devices to be upgraded contain sufficient memory and that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, contact the Cisco Technical Assistance Center (TAC) or your contracted maintenance provider for assistance.

    Cisco IOS Software +-----------------

    Each row of the Cisco IOS Software table (below) names a Cisco IOS Software release train. If a given release train is vulnerable, then the earliest possible releases that contain the fix (along with the anticipated date of availability for each, if applicable) are listed in the "First Fixed Release" column of the table. The "Recommended Release" column indicates the releases which have fixes for all the published vulnerabilities at the time of this Advisory. A device running a release in the given train that is earlier than the release in a specific column (less than the First Fixed Release) is known to be vulnerable. Cisco recommends upgrading to a release equal to or later than the release in the "Recommended Releases" column of the table.

    +----------------------------------------+ | Major | Availability of | | Release | Repaired Releases | |------------+---------------------------| | Affected | First Fixed | Recommended | | 12.0-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | 12.0 | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0DA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)DB | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0DB | release | | | | 12.0(7)DB | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)DC | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0DC | release | | | | 12.0(7)DC | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.0S | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0ST | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.0T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.0W | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0WC | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.0WT | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XD | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Note: | | | | Releases | | | | prior to | | | | 12.0(7)XE1 | | | | are | | | 12.0XE | vulnerable, | | | | release | | | | 12.0(7)XE1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.0XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)XK2 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0XK | release | | | | 12.0(7)XK2 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.0XL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XN | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)XR1 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0XR | release | | | | 12.0(7)XR1 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.0XS | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XW | Not | | | | Vulnerable | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.1-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.1 | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.1AA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1AX | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(22)AY1 | | | | are | | | 12.1AY | vulnerable, | 12.1(22) | | | release | EA11 | | | 12.1(22)AY1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1AZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1CX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1DA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(4)DB1 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.1DB | release | | | | 12.1(4)DB1 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(4)DC2 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.1DC | release | | | | 12.1(4)DC2 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.1E | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(11)EA1 | | | | are | | | 12.1EA | vulnerable, | 12.1(22) | | | release | EA11 | | | 12.1(11)EA1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1EB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EW | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Note: | | | | Releases | | | | prior to | | | | 12.1(8a)EX | | | | are | | | 12.1EX | vulnerable, | | | | release | | | | 12.1(8a)EX | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1EY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1GA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1GB | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.1T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.1XA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XB | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(1)XC1 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.1XC | release | | | | 12.1(1)XC1 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.1XD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XN | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XR | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XS | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XT | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YD | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Note: | | | | Releases | | | | prior to | | | | 12.1(5)YE1 | | | | are | 12.4(19a) | | 12.1YE | vulnerable, | | | | release | 12.4(19b) | | | 12.1(5)YE1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1YF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.2-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2 | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2B | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2BC | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2BW | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.2(8)BY | | | | are | | | | vulnerable, | 12.4(19a) | | 12.2BY | release | | | | 12.2(8)BY | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.2BZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2CX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2CY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2CZ | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.2DA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2DD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2DX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EWA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2FX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2FY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2FZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2JA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2JK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2MB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2MC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2S | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SBC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SCA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SED | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SGA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SRA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SRB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SRC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SVA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SVC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SVD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.2(8) | | | | TPC10d are | | | | vulnerable, | | | 12.2TPC | release | | | | 12.2(8) | | | | TPC10d and | | | | later are | | | | not | | | | vulnerable; | | |------------+-------------+-------------| | 12.2UZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XB | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XC | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XG | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XK | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XL | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XN | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XNA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XR | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XS | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XT | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XU | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YH | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YJ | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2YK | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YL | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YM | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YN | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.2(18) | | | migrate to | SXF15; | | 12.2YO | any release | Available | | | in 12.2SY | on | | | | 08-AUG-08 | |------------+-------------+-------------| | 12.2YP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YR | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YS | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YT | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YU | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YV | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2YW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZB | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2ZC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZD | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZE | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZF | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.2ZG | first fixed | | | | in 12.4T | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.2ZH | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZJ | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.2ZL | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.2ZP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZYA | Not | | | | Vulnerable | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.3-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3 | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3B | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3BC | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3BW | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3EU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JEA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JEB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JEC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JX | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3TPC | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.3VA | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XA | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XB | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XC | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XD | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XE | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XF | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XG | first fixed | | | | in 12.4T | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XH | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3XI | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | | 12.3(14) | | | | YX12 | | | Vulnerable; | | | 12.3XJ | first fixed | 12.4(20)T; | | | in 12.3YX | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XK | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XQ | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XR | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XS | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3XU | Not | | | | Vulnerable | | |------------+-------------+-------------| | | | 12.3(14) | | | | YX12 | | | Vulnerable; | | | 12.3XW | first fixed | 12.4(20)T; | | | in 12.3YX | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.3XY | Not | | | | Vulnerable | | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3YA | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YD | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | | 12.3(14) | | | | YX12 | | | Vulnerable; | | | 12.3YF | first fixed | 12.4(20)T; | | | in 12.3YX | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YG | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YH | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YI | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.3YJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YK | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.3(14) | | | | YM12 are | | | | vulnerable, | 12.3(14) | | 12.3YM | release | YM12 | | | 12.3(14) | | | | YM12 and | | | | later are | | | | not | | | | vulnerable; | | |------------+-------------+-------------| | 12.3YQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YS | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YT | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | | | 12.3YU | first fixed | | | | in 12.4XB | | |------------+-------------+-------------| | 12.3YX | 12.3(14) | 12.3(14) | | | YX12 | YX12 | |------------+-------------+-------------| | 12.3YZ | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.4-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | 12.4(18b) | | | | | | | | 12.4(19a) | 12.4(19a) | | 12.4 | | | | | 12.4(19b) | 12.4(19b) | | | | | | | 12.4(21) | | |------------+-------------+-------------| | 12.4JA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JMA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JMB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JMC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4MD | 12.4(15)MD | 12.4(15)MD | |------------+-------------+-------------| | 12.4MR | 12.4(19)MR | 12.4(19)MR | |------------+-------------+-------------| | 12.4SW | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | 12.4(15)T6 | | | | | 12.4(20)T; | | 12.4T | 12.4(20)T; | Available | | | Available | on | | | on | 11-JUL-08 | | | 11-JUL-08 | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XA | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.4XB | 12.4(2)XB10 | | |------------+-------------+-------------| | 12.4XC | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | 12.4(4) | 12.4(20)T; | | | XD11; | Available | | 12.4XD | Available | on | | | on | 11-JUL-08 | | | 31-JUL-08 | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XE | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.4XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4XG | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XJ | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.4XK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4XL | 12.4(15)XL2 | 12.4(15)XL2 | |------------+-------------+-------------| | 12.4XM | 12.4(15)XM1 | 12.4(15)XM1 | |------------+-------------+-------------| | 12.4XN | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XQ | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XT | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XV | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XW | 12.4(11)XW8 | 12.4(11)XW6 | |------------+-------------+-------------| | 12.4XY | 12.4(15)XY3 | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XZ | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | +----------------------------------------+

    Cisco Network Registrar +----------------------

    +---------------------------------------+ | Affected | | | Release | First Fixed Release | | Train | | |--------------+------------------------| | 6.1.x | Contact TAC | |--------------+------------------------| | | 6.3.1.1 patch; | | 6.3.x | available mid-July | | | 2008 | |--------------+------------------------| | 7.0.x | 7.0.1; available in | | | mid-July 2008 | +---------------------------------------+

    Cisco Network Registrar software is available for download at:

    http://www.cisco.com/pcgi-bin/Software/Tablebuild/tablebuild.pl/nr-eval

    Cisco Application and Content Networking System +----------------------------------------------

    This issue is fixed in version 5.5.11 of Cisco ACNS software. This release will be available for download from www.cisco.com in late July 2008.

    Cisco ACNS 5.5 software is available for download at:

    http://www.cisco.com/pcgi-bin/tablebuild.pl/acns55

    Workarounds

    There are no workarounds.

    Additional information about identification and mitigation of attacks against DNS is in the Cisco Applied Intelligence white paper "DNS Best Practices, Network Protections, and Attack Identification," available at http://www.cisco.com/web/about/security/intelligence/dns-bcp.html.

    Obtaining Fixed Software

    Cisco has released free software updates that address these vulnerabilities. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment.

    Customers may only install and expect support for the feature sets they have purchased. By installing, downloading, accessing or otherwise using such software upgrades, customers agree to be bound by the terms of Cisco's software license terms found at http://www.cisco.com/en/US/products/prod_warranties_item09186a008088e31f.html, or as otherwise set forth at Cisco.com Downloads at http://www.cisco.com/public/sw-center/sw-usingswc.shtml.

    Do not contact psirt@cisco.com or security-alert@cisco.com for software upgrades.

    Customers with Service Contracts +-------------------------------

    Customers with contracts should obtain upgraded software through their regular update channels. For most customers, this means that upgrades should be obtained through the Software Center on Cisco's worldwide website at http://www.cisco.com.

    Customers using Third Party Support Organizations +------------------------------------------------

    Customers whose Cisco products are provided or maintained through prior or existing agreements with third-party support organizations, such as Cisco Partners, authorized resellers, or service providers should contact that support organization for guidance and assistance with the appropriate course of action in regards to this advisory.

    The effectiveness of any workaround or fix is dependent on specific customer situations, such as product mix, network topology, traffic behavior, and organizational mission. Due to the variety of affected products and releases, customers should consult with their service provider or support organization to ensure any applied workaround or fix is the most appropriate for use in the intended network before it is deployed.

    Customers without Service Contracts +----------------------------------

    Customers who purchase direct from Cisco but do not hold a Cisco service contract, and customers who purchase through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should acquire upgrades by contacting the Cisco Technical Assistance Center (TAC). TAC contacts are as follows.

    • +1 800 553 2447 (toll free from within North America)
    • +1 408 526 7209 (toll call from anywhere in the world)
    • e-mail: tac@cisco.com

    Customers should have their product serial number available and be prepared to give the URL of this notice as evidence of entitlement to a free upgrade. Free upgrades for non-contract customers must be requested through the TAC.

    Refer to http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml for additional TAC contact information, including localized telephone numbers, and instructions and e-mail addresses for use in various languages.

    Exploitation and Public Announcements

    The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability described in this advisory. Cisco would like to thank Dan Kaminsky for notifying vendors about his findings.

    Note that vulnerability information for Cisco IOS Software is being provided in this advisory outside of the announced publication schedule for Cisco IOS Software described at http://www.cisco.com/go/psirt due to industry-wide disclosure of the vulnerability.

    Status of this Notice: FINAL

    THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.

    A stand-alone copy or Paraphrase of the text of this document that omits the distribution URL in the following section is an uncontrolled copy, and may lack important information or contain factual errors.

    Distribution

    This advisory is posted on Cisco's worldwide website at

    http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml

    In addition to worldwide web posting, a text version of this notice is clear-signed with the Cisco PSIRT PGP key and is posted to the following e-mail and Usenet news recipients.

    • cust-security-announce@cisco.com
    • first-teams@first.org
    • bugtraq@securityfocus.com
    • vulnwatch@vulnwatch.org
    • cisco@spot.colorado.edu
    • cisco-nsp@puck.nether.net
    • full-disclosure@lists.grok.org.uk
    • comp.dcom.sys.cisco@newsgate.cisco.com

    Future updates of this advisory, if any, will be placed on Cisco's worldwide website, but may or may not be actively announced on mailing lists or newsgroups. Users concerned about this problem are encouraged to check the above URL for any updates.

    Revision History

    +-----------------------------------------------------------+ | Revision 1.0 | 2008-July-08 | Initial public release | +-----------------------------------------------------------+

    Cisco Security Procedures

    Complete information on reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco, is available on Cisco's worldwide website at http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html. This includes instructions for press inquiries regarding Cisco security notices. All Cisco security advisories are available at http://www.cisco.com/go/psirt.

    +-------------------------------------------------------------------- Copyright 2007-2008 Cisco Systems, Inc. All rights reserved. +--------------------------------------------------------------------

    Updated: Jul 08, 2008 Document ID: 107064

    +--------------------------------------------------------------------

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux)

    iEYEARECAAYFAkhztUIACgkQ86n/Gc8U/uCAgACfVRRoJO4w4defnpwbNlfgBm4t 2SMAnjKCKECHtsjN9umqqPrPd2DW4IcC =XGZw -----END PGP SIGNATURE----- . This could be used to misdirect users and services; i.e.

    This update provides the latest stable BIND releases for all platforms except Corporate Server/Desktop 3.0 and MNF2, which have been patched to correct the issue.


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447


    Updated Packages:

    Mandriva Linux 2007.1: 73cc24fc9586b7ab290d755012c16a79 2007.1/i586/bind-9.4.2-0.1mdv2007.1.i586.rpm 70867c50cfd64b4406aa002d627d740b 2007.1/i586/bind-devel-9.4.2-0.1mdv2007.1.i586.rpm 3603e9d9115466753397a1f472011703 2007.1/i586/bind-utils-9.4.2-0.1mdv2007.1.i586.rpm cf5e4100ecb21a4eb603831e5a6ec23d 2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm

    Mandriva Linux 2007.1/X86_64: 4eb7ce0984d3ce3befff667392e3bf3e 2007.1/x86_64/bind-9.4.2-0.1mdv2007.1.x86_64.rpm d7b9a9e7d4c52a5b0c54f59ca20bf2d5 2007.1/x86_64/bind-devel-9.4.2-0.1mdv2007.1.x86_64.rpm c5c66c9609615029d2f07f7b09a63118 2007.1/x86_64/bind-utils-9.4.2-0.1mdv2007.1.x86_64.rpm cf5e4100ecb21a4eb603831e5a6ec23d 2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm

    Mandriva Linux 2008.0: 52dfe3970fcd9495b2bb9379a9312b25 2008.0/i586/bind-9.4.2-1mdv2008.0.i586.rpm 97d20d35b6814aa2f9fab549ca6237c0 2008.0/i586/bind-devel-9.4.2-1mdv2008.0.i586.rpm 87a7bb3dd25abd8cd882a8f2fdc2398e 2008.0/i586/bind-utils-9.4.2-1mdv2008.0.i586.rpm da4444a8074e6ede39dfa557fb258db7 2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm

    Mandriva Linux 2008.0/X86_64: b9d0337363bc1e2b14505f25d4ee5f99 2008.0/x86_64/bind-9.4.2-1mdv2008.0.x86_64.rpm 9b75e2a96784c00c2912bc3bf333d089 2008.0/x86_64/bind-devel-9.4.2-1mdv2008.0.x86_64.rpm 0a593b090d9e6bda3666e234056e19ba 2008.0/x86_64/bind-utils-9.4.2-1mdv2008.0.x86_64.rpm da4444a8074e6ede39dfa557fb258db7 2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm

    Mandriva Linux 2008.1: 2534ef007262d4ea2d219bab0190466c 2008.1/i586/bind-9.5.0-3mdv2008.1.i586.rpm c3feee5d05aa3aee14cd70a2d295d0b1 2008.1/i586/bind-devel-9.5.0-3mdv2008.1.i586.rpm f306c06665b723a2530258e6d1dbdae2 2008.1/i586/bind-doc-9.5.0-3mdv2008.1.i586.rpm 967ef80628f92160930bc3a3827a216e 2008.1/i586/bind-utils-9.5.0-3mdv2008.1.i586.rpm 70fc7a7964944a2926979710c5148ed1 2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm

    Mandriva Linux 2008.1/X86_64: 3f4d96d7a7f913c141e1f63cdc7e7336 2008.1/x86_64/bind-9.5.0-3mdv2008.1.x86_64.rpm 420db658366763686198f41394aa72b3 2008.1/x86_64/bind-devel-9.5.0-3mdv2008.1.x86_64.rpm 6f3674f68311494c5a9ff0dbce831e82 2008.1/x86_64/bind-doc-9.5.0-3mdv2008.1.x86_64.rpm 4294b3a086b89bf53c5c967c17962447 2008.1/x86_64/bind-utils-9.5.0-3mdv2008.1.x86_64.rpm 70fc7a7964944a2926979710c5148ed1 2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm

    Corporate 3.0: de2a4372d1c25d73f343c9fcb044c9dd corporate/3.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm 1f24f6dbdb6c02e21cbbef99555049cb corporate/3.0/i586/bind-devel-9.2.3-6.5.C30mdk.i586.rpm 00405b98290d5a41f226081baa57e18d corporate/3.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm 6a237dc290f4f7c463b1996e6a4a4515 corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm

    Corporate 3.0/X86_64: 628162f3d6a414828d2231fefc46842b corporate/3.0/x86_64/bind-9.2.3-6.5.C30mdk.x86_64.rpm dd29ff31a9cffcc1b20fd045869d7013 corporate/3.0/x86_64/bind-devel-9.2.3-6.5.C30mdk.x86_64.rpm c475c1a4d048e04da1fc27dcbb17c3f3 corporate/3.0/x86_64/bind-utils-9.2.3-6.5.C30mdk.x86_64.rpm 6a237dc290f4f7c463b1996e6a4a4515 corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm

    Corporate 4.0: 271ead204904be302d197cd542f5ae23 corporate/4.0/i586/bind-9.3.5-0.4.20060mlcs4.i586.rpm 42413dcc1cf053e735216f767eff4e5d corporate/4.0/i586/bind-devel-9.3.5-0.4.20060mlcs4.i586.rpm 0201afe493a41e1deedc9bf7e9725f4a corporate/4.0/i586/bind-utils-9.3.5-0.4.20060mlcs4.i586.rpm 86bc0cdc9ed1b959b6f56e0660268f2e corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm

    Corporate 4.0/X86_64: b1a18a7d0578dab7bd825eda6c682b3d corporate/4.0/x86_64/bind-9.3.5-0.4.20060mlcs4.x86_64.rpm 6a2ebd550feb9147058de05b1a1ef04d corporate/4.0/x86_64/bind-devel-9.3.5-0.4.20060mlcs4.x86_64.rpm 670a1b934ce4974b8505018ab69ade0b corporate/4.0/x86_64/bind-utils-9.3.5-0.4.20060mlcs4.x86_64.rpm 86bc0cdc9ed1b959b6f56e0660268f2e corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm

    Multi Network Firewall 2.0: 5b694c24cc2092e38f531dbfdd5c9d41 mnf/2.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm c08bc805027059c47bed32215f17eacb mnf/2.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm 39225289516498e1b071c5059306f2b9 mnf/2.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

    All packages are signed by Mandriva for security. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200901-03


                                            http://security.gentoo.org/
    

    Severity: Normal Title: pdnsd: Denial of Service and cache poisoning Date: January 11, 2009 Bugs: #231285 ID: 200901-03


    Synopsis

    Two errors in pdnsd allow for Denial of Service and cache poisoning.

    Affected packages

    -------------------------------------------------------------------
     Package        /  Vulnerable  /                        Unaffected
    -------------------------------------------------------------------
    

    1 net-dns/pdnsd < 1.2.7 >= 1.2.7

    Description

    Two issues have been reported in pdnsd:

    • The p_exec_query() function in src/dns_query.c does not properly handle many entries in the answer section of a DNS reply, related to a "dangling pointer bug" (CVE-2008-4194). The first issue can be exploited by enticing pdnsd to send a query to a malicious DNS server, or using the port randomization weakness, and might lead to a Denial of Service.

    Workaround

    Port randomization can be enabled by setting the "query_port_start" option to 1024 which would resolve the CVE-2008-1447 issue.

    Resolution

    All pdnsd users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-dns/pdnsd-1.2.7"
    

    References

    [ 1 ] CVE-2008-1447 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 [ 2 ] CVE-2008-4194 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4194

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-200901-03.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

    License

    Copyright 2009 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5 . Among other things, successful attacks can lead to misdirected web traffic and email rerouting.

    This update changes Debian's dnsmasq packages to implement the recommended countermeasure: UDP query source port randomization. This change increases the size of the space from which an attacker has to guess values in a backwards-compatible fashion and makes successful attacks significantly more difficult.

    This update also switches the random number generator to Dan Bernstein's SURF.

    For the stable distribution (etch), this problem has been fixed in version 2.35-1+etch4. Packages for alpha will be provided later.

    For the unstable distribution (sid), this problem has been fixed in version 2.43-1.

    We recommend that you upgrade your dnsmasq package.

    Upgrade instructions


    wget url will fetch the file for you dpkg -i file.deb will install the referenced file.

    If you are using the apt-get package manager, use the line for sources.list as given below:

    apt-get update will update the internal database apt-get upgrade will install corrected packages

    You may use an automated update by adding the resources from the footer to the proper configuration.

    Debian GNU/Linux 4.0 alias etch


    Stable updates are available for amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

    Source archives:

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.dsc Size/MD5 checksum: 596 3834461c89e55467b4b65ed4ac209e81 http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35.orig.tar.gz Size/MD5 checksum: 252901 ad1fafeaf3442685cfe16613e0f8b777 http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.diff.gz Size/MD5 checksum: 19202 4ced7768f49198bd43bbbd24f2a3d3e4

    amd64 architecture (AMD x86_64 (AMD64))

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_amd64.deb Size/MD5 checksum: 188278 8fb55f694db9fdfccaa86d134e937777

    arm architecture (ARM)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_arm.deb Size/MD5 checksum: 181746 4caf23f31de937b817e12ade7d132eac

    hppa architecture (HP PA RISC)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_hppa.deb Size/MD5 checksum: 190490 66730e785683655b058d11aa70346be4

    i386 architecture (Intel ia32)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_i386.deb Size/MD5 checksum: 184546 1fbdd71e81a1e05d68b0f88eaeb00b10

    ia64 architecture (Intel ia64)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_ia64.deb Size/MD5 checksum: 223758 011f283b71ef0f9e07d5a9dce25db505

    mips architecture (MIPS (Big Endian))

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mips.deb Size/MD5 checksum: 189846 5c67cca2eaedc1dff80c5fd05aa1d33f

    mipsel architecture (MIPS (Little Endian))

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mipsel.deb Size/MD5 checksum: 191824 dfd87d69a7751f1e6ef2d0f1ede052ff

    powerpc architecture (PowerPC)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_powerpc.deb Size/MD5 checksum: 186890 93701abcca5421beddab015a7f35af99

    s390 architecture (IBM S/390)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_s390.deb Size/MD5 checksum: 186396 6f19f6c8d803c3d57e01e73fe1e11886

    sparc architecture (Sun SPARC/UltraSPARC)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_sparc.deb Size/MD5 checksum: 182910 f360078c14f715e90e60124b4ede2be9

    These files will probably be moved into the stable distribution on its next update. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c01506861 Version: 3

    HPSBUX02351 SSRT080058 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2008-07-16 Last Updated: 2008-08-06

    Potential Security Impact: Remote DNS cache poisoning

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP-UX running BIND. HP-UX B.11.11, B.11.23, B.11.31 running BIND v9.3.2 or BIND v9.2.0, HP-UX B.11.11 running BIND v8.1.2

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2008-1447 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 =============================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002.

    RESOLUTION

    HP has provided the following software updates / patch to resolve the vulnerabilities for BIND v9.2.0 and BIND v9.3.2.

    Customers running BIND v8.1.2 on HP-UX B.11.11 should upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below.

    The BIND v9.2.0 update is available for download from: ftp://ss080058:ss080058@hprc.external.hp.com

    The patch PHNE_37865 is available from: http://itrc.hp.com

    The BIND v9.3.2 updates are available for download from: http://software.hp.com

    HP-UX Release - B.11.11 running v8.1.2 Action - Upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below

    HP-UX Release - B.11.11 running v9.2.0 BIND Depot name - BIND920v11.depot MD5 Sum - F6999280DE19645EF86FF52083AACD72

    HP-UX Release - B.11.23 running v9.2.0 Action - Install PHNE_37865

    HP-UX Release - B.11.11 running v9.3.2 Action - Install revision C.9.3.2.3.0 or subsequent

    HP-UX Release - B.11.23 running v9.3.2 Action - Install revision C.9.3.2.3.0 or subsequent

    HP-UX Release - B.11.31 running v9.3.2 Action - Install revision C.9.3.2.3.0 or subsequent

    Note: HP is aware of performance issues with these updates / patch. All customers should test the updates / patch in their environment. HP is investigating changes to reduce the performance issues. This bulletin will be revised when new updates / patch become available.

    MANUAL ACTIONS: Yes - NonUpdate For B.11.11 running v8.1.2, upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates For B.11.11 running v9.2.0 install BIND920v11.depot

    PRODUCT SPECIFIC INFORMATION HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all HP-issued Security Bulletins and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa

    AFFECTED VERSIONS

    For BIND v8.1.2 HP-UX B.11.11 ============= InternetSrvcs.INETSVCS-RUN action: upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates

    For BIND v9.3.2 HP-UX B.11.11 ============= BindUpgrade.BIND-UPGRADE action: install revision C.9.3.2.3.0 or subsequent URL: http://software.hp.com

    HP-UX B.11.23

    BindUpgrade.BIND-UPGRADE BindUpgrade.BIND2-UPGRADE action: install revision C.9.3.2.3.0 or subsequent URL: http://software.hp.com

    HP-UX B.11.31

    NameService.BIND-AUX NameService.BIND-RUN action: install revision C.9.3.2.3.0 or subsequent URL: http://software.hp.com

    For BIND v9.2.0 HP-UX B.11.11 ============= BINDv920.INETSVCS-BIND action: install revision B.11.11.01.011 or subsequent URL: ftp://ss080058:ss080058@hprc.external.hp.com

    HP-UX B.11.23

    InternetSrvcs.INETSVCS-INETD InternetSrvcs.INETSVCS-RUN InternetSrvcs.INETSVCS2-RUN action: install patch PHNE_37865 or subsequent URL: http://itrc.hp.com

    END AFFECTED VERSIONS

    HISTORY Version:1 (rev.1) - 16 July 2008 Initial release Version:2 (rev.2) - 19 July 2008 Added BIND v9.2.0 depot information Version:3 (rev.3) - 06 August 2008 Updated patch location, revised BIND v9.2.0 depot information, added BIND v8.1.2

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For further information, contact normal HP Services support channel.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com It is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information. To get the security-alert PGP key, please send an e-mail message as follows: To: security-alert@hp.com Subject: get key

    Subscribe: To initiate a subscription to receive future HP Security Bulletins via Email: http://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA&langcode=USENG&jumpid=in_SC-GEN__driverITRC&topiccode=ITRC On the web page: ITRC security bulletins and patch sign-up Under Step1: your ITRC security bulletins and patches - check ALL categories for which alerts are required and continue. Under Step2: your ITRC operating systems - verify your operating system selections are checked and save.

    To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php Log in on the web page: Subscriber's choice for Business: sign-in. On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections.

    To review previously published Security Bulletins visit: http://www.itrc.hp.com/service/cki/secBullArchive.do

    • The Software Product Category that this Security Bulletin relates to is represented by the 5th and 6th characters of the Bulletin number in the title:

    GN = HP General SW MA = HP Management Agents MI = Misc. 3rd Party SW MP = HP MPE/iX NS = HP NonStop Servers OV = HP OpenVMS PI = HP Printing & Imaging ST = HP Storage SW TL = HP Trusted Linux TU = HP Tru64 UNIX UX = HP-UX VV = HP VirtualVault

    System management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions.

    "HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user's use or disregard of the information provided in this Bulletin.

    Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental, special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. =========================================================== Ubuntu Security Notice USN-622-1 July 08, 2008 bind9 vulnerability CVE-2008-1447 ===========================================================

    A security issue affects the following Ubuntu releases:

    Ubuntu 6.06 LTS Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS

    This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

    The problem can be corrected by upgrading your system to the following package versions:

    Ubuntu 6.06 LTS: libdns21 1:9.3.2-2ubuntu1.5

    Ubuntu 7.04: libdns22 1:9.3.4-2ubuntu2.3

    Ubuntu 7.10: libdns32 1:9.4.1-P1-3ubuntu2

    Ubuntu 8.04 LTS: libdns35 1:9.4.2-10ubuntu0.1

    In general, a standard system upgrade is sufficient to effect the necessary changes.

    Details follow:

    Dan Kaminsky discovered weaknesses in the DNS protocol as implemented by Bind.

    Description

    == Several vulnerabilities in safe level ==

    Multiple errors in the implementation of safe level restrictions can be exploited to call "untrace_var()", perform syslog operations, and modify "$PROGRAM_NAME" at safe level 4, or call insecure methods at safe levels 1 through 3.

    (These vulnerabilities were reported by Keita Yamaguchi.)

    == DoS vulnerability in WEBrick ==

    An error exists in the usage of regular expressions in "WEBrick::HTTPUtils.split_header_value()". This can be exploited to consume large amounts of CPU via a specially crafted HTTP request.

    (This vulnerability was reported by Christian Neukirchen.)

    == Lack of taintness check in dl ==

    An error in "DL" can be exploited to bypass security restrictions and call potentially dangerous functions.

    (This vulnerability was reported by Tanaka Akira.)

    Affected packages:

    Pardus 2008: ruby, all before 1.8.7_p72-16-4 ruby-mode, all before 1.8.7_p72-16-4

    Pardus 2007: ruby, all before 1.8.7_p72-16-13 ruby-mode, all before 1.8.7_p72-16-4

    Resolution

    There are update(s) for ruby, ruby-mode. You can update them via Package Manager or with a single command from console:

    Pardus 2008: pisi up ruby ruby-mode

    Pardus 2007: pisi up ruby ruby-mode

    References

    • http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby
    • http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447
    • http://secunia.com/advisories/31430/

    -- Pınar Yanardağ http://pinguar.org


    Full-Disclosure - We believe in it. There are two ways to deal with this situation:

    1. The documentation included with BIND 9 contains a migration guide. Configure the BIND 8 resolver to forward queries to a BIND 9 resolver. Provided that the network between both resolvers is trusted, this protects the BIND 8 resolver from cache poisoning attacks (to the same degree that the BIND 9 resolver is protected). It is theoretically possible to safely use BIND 8 in this way, but updating to BIND 9 is strongly recommended. BIND 8 (that is, the bind package) will be removed from the etch distribution in a future point release. Scott Kitterman noted that python-dns is vulnerable to this predictability, as it randomizes neither its transaction ID nor its source port. Taken together, this lack of entropy leaves applications using python-dns to perform DNS queries highly susceptible to response forgery.

    Try a new way to discover vulnerabilities that ALREADY EXIST in your IT infrastructure.

    The Full Featured Secunia Network Software Inspector (NSI) is now available: http://secunia.com/network_software_inspector/

    The Secunia NSI enables you to INSPECT, DISCOVER, and DOCUMENT vulnerabilities in more than 4,000 different Windows applications.


    TITLE: Red Hat update for bind

    SECUNIA ADVISORY ID: SA26195

    VERIFY ADVISORY: http://secunia.com/advisories/26195/

    CRITICAL: Moderately critical

    IMPACT: Spoofing

    WHERE:

    From remote

    OPERATING SYSTEM: Red Hat Enterprise Linux (v. 5 server) http://secunia.com/product/13652/ Red Hat Enterprise Linux Desktop (v. 5 client) http://secunia.com/product/13653/ Red Hat Enterprise Linux Desktop Workstation (v. 5 client) http://secunia.com/product/13651/ RedHat Enterprise Linux AS 2.1 http://secunia.com/product/48/ RedHat Enterprise Linux AS 3 http://secunia.com/product/2534/ RedHat Enterprise Linux AS 4 http://secunia.com/product/4669/ RedHat Enterprise Linux ES 2.1 http://secunia.com/product/1306/ RedHat Enterprise Linux ES 3 http://secunia.com/product/2535/ RedHat Enterprise Linux ES 4 http://secunia.com/product/4668/ RedHat Enterprise Linux WS 3 http://secunia.com/product/2536/ RedHat Enterprise Linux WS 2.1 http://secunia.com/product/1044/ RedHat Enterprise Linux WS 4 http://secunia.com/product/4670/ RedHat Linux Advanced Workstation 2.1 for Itanium http://secunia.com/product/1326/

    DESCRIPTION: Red Hat has issued an update for bind.

    For more information: SA26152

    SOLUTION: Updated packages are available from Red Hat Network. http://rhn.redhat.com

    ORIGINAL ADVISORY: http://rhn.redhat.com/errata/RHSA-2007-0740.html

    OTHER REFERENCES: SA26152: http://secunia.com/advisories/26152/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Security Advisory (08-AUG-2008) (CVE-2008-3280) ===============================================

    Ben Laurie of Google's Applied Security team, while working with an external researcher, Dr. Richard Clayton of the Computer Laboratory, Cambridge University, found that various OpenID Providers (OPs) had TLS Server Certificates that used weak keys, as a result of the Debian Predictable Random Number Generator (CVE-2008-0166).

    In combination with the DNS Cache Poisoning issue (CVE-2008-1447) and the fact that almost all SSL/TLS implementations do not consult CRLs (currently an untracked issue), this means that it is impossible to rely on these OPs.

    Attack Description

    In order to mount an attack against a vulnerable OP, the attacker first finds the private key corresponding to the weak TLS certificate. He then sets up a website masquerading as the original OP, both for the OpenID protocol and also for HTTP/HTTPS.

    There are two cases, one is where the victim is a user trying to identify themselves, in which case, even if they use HTTPS to "ensure" that the site they are visiting is indeed their provider, they will be unable to detect the substitution and will give their login credentials to the attacker.

    The second case is where the victim is the Relying Party (RP). In this case, even if the RP uses TLS to connect to the OP, as is recommended for higher assurance, he will not be defended, as the vast majority of OpenID implementations do not check CRLs, and will, therefore, accept the malicious site as the true OP.

    Mitigation

    Mitigation is surprisingly hard. In theory the vulnerable site should revoke their weak certificate and issue a new one.

    However, since the CRLs will almost certainly not be checked, this means the site will still be vulnerable to attack for the lifetime of the certificate (and perhaps beyond, depending on user behaviour). Note that shutting down the site DOES NOT prevent the attack.

    Therefore mitigation falls to other parties.

    1. Browsers must check CRLs by default.

    2. OpenID libraries must check CRLs.

    3. Until either 1 and 2 or 3 have been done, OpenID cannot be trusted for any OP that cannot demonstrate it has never had a weak certificate.

    Discussion

    Normally, when security problems are encountered with a single piece of software, the responsible thing to do is to is to wait until fixes are available before making any announcement. However, as a number of examples in the past have demonstrated, this approach does not work particularly well when many different pieces of software are involved because it is necessary to coordinate a simultaneous release of the fixes, whilst hoping that the very large number of people involved will cooperate in keeping the vulnerability secret.

    In the present situation, the fixes will involve considerable development work in adding CRL handling to a great many pieces of openID code. This is a far from trivial amount of work.

    The fixes will also involve changes to browser preferences to ensure that CRLs are checked by default -- which many vendors have resisted for years. We are extremely pessimistic that a security vulnerability in OpenID will be seen as sufficiently important to change the browser vendors minds.

    Hence, we see no value in delaying this announcement; and by making the details public as soon as possible, we believe that individuals who rely on OpenID will be better able to take their own individual steps to avoid relying upon the flawed certificates we have identified.

    OpenID is at heart quite a weak protocol, when used in its most general form[1], and consequently there is very limited reliance upon its security. This means that the consequences of the combination of attacks that are now possible is nothing like as serious as might otherwise have been the case.

    However, it does give an insight into the type of security disaster that may occur in the future if we do not start to take CRLs seriously, but merely stick them onto "to-do" lists or disable them in the name of tiny performance improvements.

    Affected Sites

    There is no central registry of OpenID systems, and so we cannot be sure that we have identified all of the weak certificates that are currently being served. The list of those we have found so far is:

    openid.sun.com www.xopenid.net openid.net.nz

    Notes

    [1] There are ways of using OpenID that are significantly more secure than the commonly deployed scheme, I shall describe those in a separate article.


    Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "fujitsu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "internet consortium",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "openwall gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "8"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.2.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "alcatel lucent",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "bluecat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "force10",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "funkwerk",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "infoblox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nixu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nominum",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "novell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "secure computing network security division",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dnsmasq",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2008-1447",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2008-1447",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-31572",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.2,
                "id": "CVE-2008-1447",
                "impactScore": 4.0,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2008-1447",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#800113",
                "trust": 0.8,
                "value": "27.54"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#252735",
                "trust": 0.8,
                "value": "3.83"
              },
              {
                "author": "VULHUB",
                "id": "VHN-31572",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka \"DNS Insufficient Socket Entropy Vulnerability\" or \"the Kaminsky bug.\". Deficiencies in the DNS protocol and common DNS implementations facilitate DNS cache poisoning attacks. ISC (Internet Systems Consortiuim) BIND generates cryptographically weak DNS query IDs which could allow a remote attacker to poison DNS caches. In IP NAT filtering in Sun Solaris 10 and OpenSolaris series products, when a DNS server runs NAT, it incorrectly changes the original address of the data packet. When the destination address is a DNS port, it will allow remote attackers to bypass CVE-2008 -1447 security protection. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nCisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache\nPoisoning Attacks\n\nAdvisory ID: cisco-sa-20080708-dns\n\nhttp://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml\n\nRevision 1.0\n\nFor Public Release 2008 July 08 1800 UTC (GMT)\n\nSummary\n=======\n\nMultiple Cisco products are vulnerable to DNS cache poisoning attacks\ndue to their use of insufficiently randomized DNS transaction IDs and\nUDP source ports in the DNS queries that they produce, which may allow\nan attacker to more easily forge DNS answers that can poison DNS caches. \n\nTo exploit this vulnerability an attacker must be able to cause a\nvulnerable DNS server to perform recursive DNS queries. Therefore, DNS\nservers that are only authoritative, or servers where recursion is not\nallowed, are not affected. \n\nCisco has released free software updates that address this vulnerability. \n\nThis advisory is posted at\nhttp://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml. \n\nThis security advisory is being published simultaneously with\nannouncements from other affected organizations. \nProducts that process DNS messages with the RD flag set will attempt to\nanswer the question asked on behalf of the client. A product is only\naffected if using a vulnerable implementation of the DNS protocol, the\nDNS server functionality for the product is enabled, and the DNS feature\nfor the product is configured to process recursive DNS query messages. \n\nVulnerable Products\n+------------------\n\nThe following Cisco products are capable of acting as DNS servers and\nhave been found to have the DNS implementation weakness that makes some\ntypes of DNS cache poisoning attacks more likely to succeed:\n\n  * Cisco IOS Software\n\n    A device that is running Cisco IOS Software will be affected if it\n    is running a vulnerable version and if it is acting as a DNS server. \n\n    All Cisco IOS Software releases that support the DNS server\n    functionality and that have not had their DNS implementation\n    improved are affected. For information about specific fixed\n    versions, please refer to the Software Versions and Fixes section. \n\n    A device that is running Cisco IOS Software is configured to act\n    as a DNS server if the command \"ip dns server\" is present in the\n    configuration. This command is not enabled by default. \n\n  * Cisco Network Registrar\n\n    All Cisco Network Registrar versions are affected, and DNS services\n    are enabled by default. \n\n    The DNS server on CNR is enabled via the command-line interface\n    (CLI) commands \"server dns enable start-on-reboot\" or \"dns enable\n    start-on-reboot\" or via the web management interface in the Servers\n    page by selecting the appropriate \"Start,\" \"Stop,\" or \"Reload\"\n    button. \n\n  * Cisco Application and Content Networking System\n\n    All Cisco Application and Content Networking System (ACNS) versions\n    are affected; DNS services are disabled by default. \n\n    ACNS is configured to act as a DNS server if the command\n    \"dns enable\" is present in the configuration. \n\n  * Cisco Global Site Selector Used in Combination with Cisco Network\n    Registrar\n\n    The Cisco Global Site Selector (GSS) is affected when it is used in\n    combination with Cisco Network Registrar software to provide a more\n    complete DNS solution. Fixed software would come in the form of an\n    update of the Cisco Network Registrar software rather than an update\n    of the GSS software. \n\nProducts Confirmed Not Vulnerable\n+--------------------------------\n\nProducts that do not offer DNS server capabilities are not affected by\nthis vulnerability. \n\nThe Cisco GSS by itself is not affected by this vulnerability. However,\nit is affected when it is used with Cisco Network Registrar software. \n\nNo other Cisco products are currently known to be affected by these\nvulnerabilities. \n\nDetails\n=======\n\nThe Domain Name System is an integral part of networks that are based\non TCP/IP such as the Internet. Simply stated, the Domain Name System\nis a hierarchical database that contains mappings of hostnames and IP\naddresses. When handling\na query from a DNS client, a DNS server can look into its portion of the\nglobal DNS database (if the query is for a portion of the DNS database\nfor which the DNS server is authoritative), or it can relay the query\nto other DNS servers (if it is configured to do so and if the query\nis for a portion of the DNS database for which the DNS server is not\nauthoritative.)\n\nBecause of the processing time and bandwidth that is associated with\nhandling a DNS query, most DNS servers locally store responses that\nare received from other DNS servers. The area where these responses\nare stored locally is called a \"cache.\" Once a response is stored in a\ncache, the DNS server can use the locally stored response for a certain\ntime (called the \"time to live\") before having to query DNS servers\nagain to refresh the local (cached) copy of the response. For\nexample, if www.example.com is mapped to the IP address 192.168.0.1\nand this mapping is present in the cache of a DNS server, an attacker\nwho succeeds in poisoning the DNS cache of this server may be able to\nmap www.example.com to 10.0.0.1 instead. If this happens, a user who\nis trying to visit www.example.com may end up contacting the wrong web\nserver. The fundamental implementation\nweakness is that the DNS transaction ID and source port number used to\nvalidate DNS responses are not sufficiently randomized and can easily\nbe predicted, which allows an attacker to create forged responses to\nDNS queries that will match the expected values. The DNS server will\nconsider such responses to be valid. \n\nThe following Cisco products that offer DNS server functionality have\nbeen found to be susceptible to DNS cache poisoning attacks:\n\n  * Cisco IOS Software: The vulnerability documented in Cisco bug ID\n    CSCso81854. \n\n  * Cisco Network Registrar: The vulnerability documented in Cisco\n    bug ID CSCsq01298. \n\n  * Cisco Application and Content Networking System (ACNS): The\n    vulnerability documented in Cisco bug ID CSCsq21930. \n\nThis vulnerability has been assigned Common Vulnerabilities and\nExposures (CVE) ID CVE-2008-1447. \n\nVulnerability Scoring Details\n+----------------------------\n\nCisco has provided scores for the vulnerabilities in this advisory based\non the Common Vulnerability Scoring System (CVSS). The CVSS scoring in\nthis Security Advisory is done in accordance with CVSS version 2.0. \n\nCVSS is a standards-based scoring method that conveys vulnerability\nseverity and helps determine urgency and priority of response. \n\nCisco has provided a base and temporal score. Customers can then\ncompute environmental scores to assist in determining the impact of the\nvulnerability in individual networks. \n\nCisco has provided an FAQ to answer additional questions regarding CVSS\nat\n\nhttp://www.cisco.com/web/about/security/intelligence/cvss-qandas.html\n\nCisco has also provided a CVSS calculator to help compute the\nenvironmental impact for individual networks at\n\nhttp://intellishield.cisco.com/security/alertmanager/cvss\n\nCisco Bugs:\n\n* DNS cache prone to poisoning/forged answers attacks (CSCsq21930)\n\n* DNS susceptible to forged query response attacks (CSCsq01298)\n\n* Need to make DNS implementation more resilient against forged answers\n(CSCso81854)\n\nCVSS Base Score - 6.4\n    Access Vector -            Network\n    Access Complexity -        Low\n    Authentication -           None\n    Confidentiality Impact -   None\n    Integrity Impact -         Partial\n    Availability Impact -      Partial\n\nCVSS Temporal Score - 5.3\n    Exploitability -           Functional\n    Remediation Level -        Official-Fix\n    Report Confidence -        Confirmed\n\n(same score for the three Cisco bugs listed above.)\n\nImpact\n======\n\nSuccessful exploitation of the vulnerability described in this document\nmay result in invalid hostname-to-IP address mappings in the cache of an\naffected DNS server. This may lead users of this DNS server to contact\nthe wrong provider of network services. The ultimate impact varies\ngreatly, ranging from a simple denial of service (for example, making\nwww.example.com resolve to 127.0.0.1) to phishing and financial fraud. \n\nSoftware Versions and Fixes\n===========================\n\nWhen considering software upgrades, also consult\nhttp://www.cisco.com/go/psirt and any subsequent advisories to determine\nexposure and a complete upgrade solution. \n\nIn all cases, customers should exercise caution to be certain the\ndevices to be upgraded contain sufficient memory and that current\nhardware and software configurations will continue to be supported\nproperly by the new release. If the information is not clear, contact\nthe Cisco Technical Assistance Center (TAC) or your contracted\nmaintenance provider for assistance. \n\nCisco IOS Software\n+-----------------\n\nEach row of the Cisco IOS Software table (below) names a Cisco IOS\nSoftware release train. If a given release train is vulnerable, then\nthe earliest possible releases that contain the fix (along with the\nanticipated date of availability for each, if applicable) are listed in\nthe \"First Fixed Release\" column of the table. The \"Recommended Release\"\ncolumn indicates the releases which have fixes for all the published\nvulnerabilities at the time of this Advisory. A device running a release\nin the given train that is earlier than the release in a specific column\n(less than the First Fixed Release) is known to be vulnerable. Cisco\nrecommends upgrading to a release equal to or later than the release in\nthe \"Recommended Releases\" column of the table. \n\n+----------------------------------------+\n|   Major    |        Availability of    |\n|  Release   |     Repaired Releases     |\n|------------+---------------------------|\n|  Affected  | First Fixed | Recommended |\n| 12.0-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n| 12.0       | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0DA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)DB   |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0DB     | release     |             |\n|            | 12.0(7)DB   | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)DC   |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0DC     | release     |             |\n|            | 12.0(7)DC   | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.0S      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0ST     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.0T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.0W      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0WC     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.0WT     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Note:       |             |\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)XE1  |             |\n|            | are         |             |\n| 12.0XE     | vulnerable, |             |\n|            | release     |             |\n|            | 12.0(7)XE1  |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.0XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)XK2  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0XK     | release     |             |\n|            | 12.0(7)XK2  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.0XL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XN     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)XR1  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0XR     | release     |             |\n|            | 12.0(7)XR1  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.0XS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.1-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.1       | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.1AA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1AX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(22)AY1 |             |\n|            | are         |             |\n| 12.1AY     | vulnerable, | 12.1(22)    |\n|            | release     | EA11        |\n|            | 12.1(22)AY1 |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1AZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1CX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1DA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(4)DB1  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.1DB     | release     |             |\n|            | 12.1(4)DB1  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(4)DC2  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.1DC     | release     |             |\n|            | 12.1(4)DC2  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.1E      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(11)EA1 |             |\n|            | are         |             |\n| 12.1EA     | vulnerable, | 12.1(22)    |\n|            | release     | EA11        |\n|            | 12.1(11)EA1 |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1EB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Note:       |             |\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(8a)EX  |             |\n|            | are         |             |\n| 12.1EX     | vulnerable, |             |\n|            | release     |             |\n|            | 12.1(8a)EX  |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1EY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1GA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1GB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.1T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.1XA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(1)XC1  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.1XC     | release     |             |\n|            | 12.1(1)XC1  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.1XD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XN     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XR     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XT     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Note:       |             |\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(5)YE1  |             |\n|            | are         | 12.4(19a)   |\n| 12.1YE     | vulnerable, |             |\n|            | release     | 12.4(19b)   |\n|            | 12.1(5)YE1  |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1YF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.2-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2       | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2B      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2BC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2BW     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.2(8)BY   |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.2BY     | release     |             |\n|            | 12.2(8)BY   | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.2BZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2CX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2CY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2CZ     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.2DA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2DD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2DX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EWA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2FX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2FY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2FZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXD    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXE    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXF    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2JA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2JK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2MB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2MC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2S      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SBC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SCA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SED    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEE    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEF    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEG    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SGA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SRA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SRB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SRC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SVA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SVC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SVD    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXD    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXE    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXF    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXH    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXI    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.2(8)     |             |\n|            | TPC10d are  |             |\n|            | vulnerable, |             |\n| 12.2TPC    | release     |             |\n|            | 12.2(8)     |             |\n|            | TPC10d and  |             |\n|            | later are   |             |\n|            | not         |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.2UZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XB     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XC     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XG     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XK     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XL     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XN     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XNA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XR     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XT     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XU     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YJ     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2YK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YL     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YM     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YN     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.2(18)    |\n|            | migrate to  | SXF15;      |\n| 12.2YO     | any release | Available   |\n|            | in 12.2SY   | on          |\n|            |             | 08-AUG-08   |\n|------------+-------------+-------------|\n| 12.2YP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YR     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YT     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YU     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YV     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2YW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZB     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2ZC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZD     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZE     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZF     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.2ZG     | first fixed |             |\n|            | in 12.4T    | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.2ZH     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZJ     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.2ZL     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.2ZP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZYA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.3-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3       | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3B      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3BC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3BW     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3EU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JEA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JEB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JEC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3TPC    | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.3VA     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XA     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XB     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XC     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XD     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XE     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XF     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XG     | first fixed |             |\n|            | in 12.4T    | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XH     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3XI     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            |             | 12.3(14)    |\n|            |             | YX12        |\n|            | Vulnerable; |             |\n| 12.3XJ     | first fixed | 12.4(20)T;  |\n|            | in 12.3YX   | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XK     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XQ     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XR     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XS     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3XU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            |             | 12.3(14)    |\n|            |             | YX12        |\n|            | Vulnerable; |             |\n| 12.3XW     | first fixed | 12.4(20)T;  |\n|            | in 12.3YX   | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.3XY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3YA     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YD     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            |             | 12.3(14)    |\n|            |             | YX12        |\n|            | Vulnerable; |             |\n| 12.3YF     | first fixed | 12.4(20)T;  |\n|            | in 12.3YX   | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YG     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YH     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YI     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.3YJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YK     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.3(14)    |             |\n|            | YM12 are    |             |\n|            | vulnerable, | 12.3(14)    |\n| 12.3YM     | release     | YM12        |\n|            | 12.3(14)    |             |\n|            | YM12 and    |             |\n|            | later are   |             |\n|            | not         |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.3YQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YS     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YT     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; |             |\n| 12.3YU     | first fixed |             |\n|            | in 12.4XB   |             |\n|------------+-------------+-------------|\n| 12.3YX     | 12.3(14)    | 12.3(14)    |\n|            | YX12        | YX12        |\n|------------+-------------+-------------|\n| 12.3YZ     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.4-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | 12.4(18b)   |             |\n|            |             |             |\n|            | 12.4(19a)   | 12.4(19a)   |\n| 12.4       |             |             |\n|            | 12.4(19b)   | 12.4(19b)   |\n|            |             |             |\n|            | 12.4(21)    |             |\n|------------+-------------+-------------|\n| 12.4JA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JMA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JMB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JMC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4MD     | 12.4(15)MD  | 12.4(15)MD  |\n|------------+-------------+-------------|\n| 12.4MR     | 12.4(19)MR  | 12.4(19)MR  |\n|------------+-------------+-------------|\n| 12.4SW     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            | 12.4(15)T6  |             |\n|            |             | 12.4(20)T;  |\n| 12.4T      | 12.4(20)T;  | Available   |\n|            | Available   | on          |\n|            | on          | 11-JUL-08   |\n|            | 11-JUL-08   |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XA     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.4XB     | 12.4(2)XB10 |             |\n|------------+-------------+-------------|\n| 12.4XC     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            | 12.4(4)     | 12.4(20)T;  |\n|            | XD11;       | Available   |\n| 12.4XD     | Available   | on          |\n|            | on          | 11-JUL-08   |\n|            | 31-JUL-08   |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XE     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.4XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4XG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XJ     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.4XK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4XL     | 12.4(15)XL2 | 12.4(15)XL2 |\n|------------+-------------+-------------|\n| 12.4XM     | 12.4(15)XM1 | 12.4(15)XM1 |\n|------------+-------------+-------------|\n| 12.4XN     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XQ     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XT     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XV     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XW     | 12.4(11)XW8 | 12.4(11)XW6 |\n|------------+-------------+-------------|\n| 12.4XY     | 12.4(15)XY3 |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XZ     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n+----------------------------------------+\n\nCisco Network Registrar\n+----------------------\n\n+---------------------------------------+\n|   Affected   |                        |\n|   Release    |  First Fixed Release   |\n|    Train     |                        |\n|--------------+------------------------|\n| 6.1.x        | Contact TAC            |\n|--------------+------------------------|\n|              | 6.3.1.1 patch;         |\n| 6.3.x        | available mid-July     |\n|              | 2008                   |\n|--------------+------------------------|\n| 7.0.x        | 7.0.1; available in    |\n|              | mid-July 2008          |\n+---------------------------------------+\n\nCisco Network Registrar software is available for download at:\n\nhttp://www.cisco.com/pcgi-bin/Software/Tablebuild/tablebuild.pl/nr-eval\n\nCisco Application and Content Networking System\n+----------------------------------------------\n\nThis issue is fixed in version 5.5.11 of Cisco ACNS software. This\nrelease will be available for download from www.cisco.com in late July\n2008. \n\nCisco ACNS 5.5 software is available for download at:\n\nhttp://www.cisco.com/pcgi-bin/tablebuild.pl/acns55\n\nWorkarounds\n===========\n\nThere are no workarounds. \n\nAdditional information about identification and mitigation of attacks\nagainst DNS is in the Cisco Applied Intelligence white paper \"DNS Best\nPractices, Network Protections, and Attack Identification,\" available at\nhttp://www.cisco.com/web/about/security/intelligence/dns-bcp.html. \n\nObtaining Fixed Software\n========================\n\nCisco has released free software updates that address these\nvulnerabilities. Prior to deploying software, customers should consult\ntheir maintenance provider or check the software for feature set\ncompatibility and known issues specific to their environment. \n\nCustomers may only install and expect support for the feature sets\nthey have purchased. By installing, downloading, accessing or\notherwise using such software upgrades, customers agree to be bound\nby the terms of Cisco\u0027s software license terms found at\nhttp://www.cisco.com/en/US/products/prod_warranties_item09186a008088e31f.html,\nor as otherwise set forth at Cisco.com Downloads at\nhttp://www.cisco.com/public/sw-center/sw-usingswc.shtml. \n\nDo not contact psirt@cisco.com or security-alert@cisco.com for software\nupgrades. \n\nCustomers with Service Contracts\n+-------------------------------\n\nCustomers with contracts should obtain upgraded software through their\nregular update channels. For most customers, this means that upgrades\nshould be obtained through the Software Center on Cisco\u0027s worldwide\nwebsite at http://www.cisco.com. \n\nCustomers using Third Party Support Organizations\n+------------------------------------------------\n\nCustomers whose Cisco products are provided or maintained through prior\nor existing agreements with third-party support organizations, such\nas Cisco Partners, authorized resellers, or service providers should\ncontact that support organization for guidance and assistance with the\nappropriate course of action in regards to this advisory. \n\nThe effectiveness of any workaround or fix is dependent on specific\ncustomer situations, such as product mix, network topology, traffic\nbehavior, and organizational mission. Due to the variety of affected\nproducts and releases, customers should consult with their service\nprovider or support organization to ensure any applied workaround or fix\nis the most appropriate for use in the intended network before it is\ndeployed. \n\nCustomers without Service Contracts\n+----------------------------------\n\nCustomers who purchase direct from Cisco but do not hold a Cisco service\ncontract, and customers who purchase through third-party vendors but are\nunsuccessful in obtaining fixed software through their point of sale\nshould acquire upgrades by contacting the Cisco Technical Assistance\nCenter (TAC). TAC contacts are as follows. \n\n  * +1 800 553 2447 (toll free from within North America)\n  * +1 408 526 7209 (toll call from anywhere in the world)\n  * e-mail: tac@cisco.com\n\nCustomers should have their product serial number available and be\nprepared to give the URL of this notice as evidence of entitlement to a\nfree upgrade. Free upgrades for non-contract customers must be requested\nthrough the TAC. \n\nRefer to http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml\nfor additional TAC contact information, including localized telephone\nnumbers, and instructions and e-mail addresses for use in various\nlanguages. \n\nExploitation and Public Announcements\n=====================================\n\nThe Cisco PSIRT is not aware of any public announcements or malicious\nuse of the vulnerability described in this advisory. Cisco would like to\nthank Dan Kaminsky for notifying vendors about his findings. \n\nNote that vulnerability information for Cisco IOS Software is being\nprovided in this advisory outside of the announced publication schedule\nfor Cisco IOS Software described at http://www.cisco.com/go/psirt due to\nindustry-wide disclosure of the vulnerability. \n\nStatus of this Notice: FINAL\n============================\n\nTHIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY\nANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF\nMERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE\nINFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS\nAT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS\nDOCUMENT AT ANY TIME. \n\nA stand-alone copy or Paraphrase of the text of this document that omits\nthe distribution URL in the following section is an uncontrolled copy,\nand may lack important information or contain factual errors. \n\nDistribution\n============\n\nThis advisory is posted on Cisco\u0027s worldwide website at\n\nhttp://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml\n\nIn addition to worldwide web posting, a text version of this notice is\nclear-signed with the Cisco PSIRT PGP key and is posted to the following\ne-mail and Usenet news recipients. \n\n  * cust-security-announce@cisco.com\n  * first-teams@first.org\n  * bugtraq@securityfocus.com\n  * vulnwatch@vulnwatch.org\n  * cisco@spot.colorado.edu\n  * cisco-nsp@puck.nether.net\n  * full-disclosure@lists.grok.org.uk\n  * comp.dcom.sys.cisco@newsgate.cisco.com\n\nFuture updates of this advisory, if any, will be placed on Cisco\u0027s\nworldwide website, but may or may not be actively announced on mailing\nlists or newsgroups. Users concerned about this problem are encouraged\nto check the above URL for any updates. \n\nRevision History\n================\n\n+-----------------------------------------------------------+\n| Revision 1.0  | 2008-July-08  | Initial public release    |\n+-----------------------------------------------------------+\n\nCisco Security Procedures\n=========================\n\nComplete information on reporting security vulnerabilities in\nCisco products, obtaining assistance with security incidents, and\nregistering to receive security information from Cisco, is available\non Cisco\u0027s worldwide website at\nhttp://www.cisco.com/en/US/products/products_security_vulnerability_policy.html. \nThis includes instructions for press inquiries regarding Cisco security\nnotices. All Cisco security advisories are available at\nhttp://www.cisco.com/go/psirt. \n\n+--------------------------------------------------------------------\nCopyright 2007-2008 Cisco Systems, Inc. All rights reserved. \n+--------------------------------------------------------------------\n\nUpdated: Jul 08, 2008                             Document ID: 107064\n\n+--------------------------------------------------------------------\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.9 (GNU/Linux)\n\niEYEARECAAYFAkhztUIACgkQ86n/Gc8U/uCAgACfVRRoJO4w4defnpwbNlfgBm4t\n2SMAnjKCKECHtsjN9umqqPrPd2DW4IcC\n=XGZw\n-----END PGP SIGNATURE-----\n.  This could be used to misdirect users and services;\n i.e. \n \n This update provides the latest stable BIND releases for all platforms\n except Corporate Server/Desktop 3.0 and MNF2, which have been patched\n to correct the issue. \n _______________________________________________________________________\n\n References:\n \n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447\n _______________________________________________________________________\n \n Updated Packages:\n \n Mandriva Linux 2007.1:\n 73cc24fc9586b7ab290d755012c16a79  2007.1/i586/bind-9.4.2-0.1mdv2007.1.i586.rpm\n 70867c50cfd64b4406aa002d627d740b  2007.1/i586/bind-devel-9.4.2-0.1mdv2007.1.i586.rpm\n 3603e9d9115466753397a1f472011703  2007.1/i586/bind-utils-9.4.2-0.1mdv2007.1.i586.rpm \n cf5e4100ecb21a4eb603831e5a6ec23d  2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm\n\n Mandriva Linux 2007.1/X86_64:\n 4eb7ce0984d3ce3befff667392e3bf3e  2007.1/x86_64/bind-9.4.2-0.1mdv2007.1.x86_64.rpm\n d7b9a9e7d4c52a5b0c54f59ca20bf2d5  2007.1/x86_64/bind-devel-9.4.2-0.1mdv2007.1.x86_64.rpm\n c5c66c9609615029d2f07f7b09a63118  2007.1/x86_64/bind-utils-9.4.2-0.1mdv2007.1.x86_64.rpm \n cf5e4100ecb21a4eb603831e5a6ec23d  2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm\n\n Mandriva Linux 2008.0:\n 52dfe3970fcd9495b2bb9379a9312b25  2008.0/i586/bind-9.4.2-1mdv2008.0.i586.rpm\n 97d20d35b6814aa2f9fab549ca6237c0  2008.0/i586/bind-devel-9.4.2-1mdv2008.0.i586.rpm\n 87a7bb3dd25abd8cd882a8f2fdc2398e  2008.0/i586/bind-utils-9.4.2-1mdv2008.0.i586.rpm \n da4444a8074e6ede39dfa557fb258db7  2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm\n\n Mandriva Linux 2008.0/X86_64:\n b9d0337363bc1e2b14505f25d4ee5f99  2008.0/x86_64/bind-9.4.2-1mdv2008.0.x86_64.rpm\n 9b75e2a96784c00c2912bc3bf333d089  2008.0/x86_64/bind-devel-9.4.2-1mdv2008.0.x86_64.rpm\n 0a593b090d9e6bda3666e234056e19ba  2008.0/x86_64/bind-utils-9.4.2-1mdv2008.0.x86_64.rpm \n da4444a8074e6ede39dfa557fb258db7  2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm\n\n Mandriva Linux 2008.1:\n 2534ef007262d4ea2d219bab0190466c  2008.1/i586/bind-9.5.0-3mdv2008.1.i586.rpm\n c3feee5d05aa3aee14cd70a2d295d0b1  2008.1/i586/bind-devel-9.5.0-3mdv2008.1.i586.rpm\n f306c06665b723a2530258e6d1dbdae2  2008.1/i586/bind-doc-9.5.0-3mdv2008.1.i586.rpm\n 967ef80628f92160930bc3a3827a216e  2008.1/i586/bind-utils-9.5.0-3mdv2008.1.i586.rpm \n 70fc7a7964944a2926979710c5148ed1  2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm\n\n Mandriva Linux 2008.1/X86_64:\n 3f4d96d7a7f913c141e1f63cdc7e7336  2008.1/x86_64/bind-9.5.0-3mdv2008.1.x86_64.rpm\n 420db658366763686198f41394aa72b3  2008.1/x86_64/bind-devel-9.5.0-3mdv2008.1.x86_64.rpm\n 6f3674f68311494c5a9ff0dbce831e82  2008.1/x86_64/bind-doc-9.5.0-3mdv2008.1.x86_64.rpm\n 4294b3a086b89bf53c5c967c17962447  2008.1/x86_64/bind-utils-9.5.0-3mdv2008.1.x86_64.rpm \n 70fc7a7964944a2926979710c5148ed1  2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm\n\n Corporate 3.0:\n de2a4372d1c25d73f343c9fcb044c9dd  corporate/3.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm\n 1f24f6dbdb6c02e21cbbef99555049cb  corporate/3.0/i586/bind-devel-9.2.3-6.5.C30mdk.i586.rpm\n 00405b98290d5a41f226081baa57e18d  corporate/3.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm \n 6a237dc290f4f7c463b1996e6a4a4515  corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm\n\n Corporate 3.0/X86_64:\n 628162f3d6a414828d2231fefc46842b  corporate/3.0/x86_64/bind-9.2.3-6.5.C30mdk.x86_64.rpm\n dd29ff31a9cffcc1b20fd045869d7013  corporate/3.0/x86_64/bind-devel-9.2.3-6.5.C30mdk.x86_64.rpm\n c475c1a4d048e04da1fc27dcbb17c3f3  corporate/3.0/x86_64/bind-utils-9.2.3-6.5.C30mdk.x86_64.rpm \n 6a237dc290f4f7c463b1996e6a4a4515  corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm\n\n Corporate 4.0:\n 271ead204904be302d197cd542f5ae23  corporate/4.0/i586/bind-9.3.5-0.4.20060mlcs4.i586.rpm\n 42413dcc1cf053e735216f767eff4e5d  corporate/4.0/i586/bind-devel-9.3.5-0.4.20060mlcs4.i586.rpm\n 0201afe493a41e1deedc9bf7e9725f4a  corporate/4.0/i586/bind-utils-9.3.5-0.4.20060mlcs4.i586.rpm \n 86bc0cdc9ed1b959b6f56e0660268f2e  corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm\n\n Corporate 4.0/X86_64:\n b1a18a7d0578dab7bd825eda6c682b3d  corporate/4.0/x86_64/bind-9.3.5-0.4.20060mlcs4.x86_64.rpm\n 6a2ebd550feb9147058de05b1a1ef04d  corporate/4.0/x86_64/bind-devel-9.3.5-0.4.20060mlcs4.x86_64.rpm\n 670a1b934ce4974b8505018ab69ade0b  corporate/4.0/x86_64/bind-utils-9.3.5-0.4.20060mlcs4.x86_64.rpm \n 86bc0cdc9ed1b959b6f56e0660268f2e  corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm\n\n Multi Network Firewall 2.0:\n 5b694c24cc2092e38f531dbfdd5c9d41  mnf/2.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm\n c08bc805027059c47bed32215f17eacb  mnf/2.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm \n 39225289516498e1b071c5059306f2b9  mnf/2.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 200901-03\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n  Severity: Normal\n     Title: pdnsd: Denial of Service and cache poisoning\n      Date: January 11, 2009\n      Bugs: #231285\n        ID: 200901-03\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nTwo errors in pdnsd allow for Denial of Service and cache poisoning. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package        /  Vulnerable  /                        Unaffected\n    -------------------------------------------------------------------\n  1  net-dns/pdnsd       \u003c 1.2.7                              \u003e= 1.2.7\n\nDescription\n===========\n\nTwo issues have been reported in pdnsd:\n\n* The p_exec_query() function in src/dns_query.c does not properly\n  handle many entries in the answer section of a DNS reply, related to\n  a \"dangling pointer bug\" (CVE-2008-4194). The first issue\ncan be exploited by enticing pdnsd to send a query to a malicious DNS\nserver, or using the port randomization weakness, and might lead to a\nDenial of Service. \n\nWorkaround\n==========\n\nPort randomization can be enabled by setting the \"query_port_start\"\noption to 1024 which would resolve the CVE-2008-1447 issue. \n\nResolution\n==========\n\nAll pdnsd users should upgrade to the latest version:\n\n    # emerge --sync\n    # emerge --ask --oneshot --verbose \"\u003e=net-dns/pdnsd-1.2.7\"\n\nReferences\n==========\n\n  [ 1 ] CVE-2008-1447\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447\n  [ 2 ] CVE-2008-4194\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4194\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n  http://security.gentoo.org/glsa/glsa-200901-03.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttp://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2009 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. Among other things,\nsuccessful attacks can lead to misdirected web traffic and email\nrerouting. \n\nThis update changes Debian\u0027s dnsmasq packages to implement the\nrecommended countermeasure: UDP query source port randomization. This\nchange increases the size of the space from which an attacker has to\nguess values in a backwards-compatible fashion and makes successful\nattacks significantly more difficult. \n\nThis update also switches the random number generator to Dan\nBernstein\u0027s SURF. \n\nFor the stable distribution (etch), this problem has been fixed in\nversion 2.35-1+etch4. Packages for alpha will be provided later. \n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 2.43-1. \n\nWe recommend that you upgrade your dnsmasq package. \n\nUpgrade instructions\n- --------------------\n\nwget url\n        will fetch the file for you\ndpkg -i file.deb\n        will install the referenced file. \n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n        will update the internal database\napt-get upgrade\n        will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration. \n\n\nDebian GNU/Linux 4.0 alias etch\n- -------------------------------\n\nStable updates are available for amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. \n\nSource archives:\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.dsc\n    Size/MD5 checksum:      596 3834461c89e55467b4b65ed4ac209e81\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35.orig.tar.gz\n    Size/MD5 checksum:   252901 ad1fafeaf3442685cfe16613e0f8b777\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.diff.gz\n    Size/MD5 checksum:    19202 4ced7768f49198bd43bbbd24f2a3d3e4\n\namd64 architecture (AMD x86_64 (AMD64))\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_amd64.deb\n    Size/MD5 checksum:   188278 8fb55f694db9fdfccaa86d134e937777\n\narm architecture (ARM)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_arm.deb\n    Size/MD5 checksum:   181746 4caf23f31de937b817e12ade7d132eac\n\nhppa architecture (HP PA RISC)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_hppa.deb\n    Size/MD5 checksum:   190490 66730e785683655b058d11aa70346be4\n\ni386 architecture (Intel ia32)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_i386.deb\n    Size/MD5 checksum:   184546 1fbdd71e81a1e05d68b0f88eaeb00b10\n\nia64 architecture (Intel ia64)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_ia64.deb\n    Size/MD5 checksum:   223758 011f283b71ef0f9e07d5a9dce25db505\n\nmips architecture (MIPS (Big Endian))\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mips.deb\n    Size/MD5 checksum:   189846 5c67cca2eaedc1dff80c5fd05aa1d33f\n\nmipsel architecture (MIPS (Little Endian))\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mipsel.deb\n    Size/MD5 checksum:   191824 dfd87d69a7751f1e6ef2d0f1ede052ff\n\npowerpc architecture (PowerPC)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_powerpc.deb\n    Size/MD5 checksum:   186890 93701abcca5421beddab015a7f35af99\n\ns390 architecture (IBM S/390)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_s390.deb\n    Size/MD5 checksum:   186396 6f19f6c8d803c3d57e01e73fe1e11886\n\nsparc architecture (Sun SPARC/UltraSPARC)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_sparc.deb\n    Size/MD5 checksum:   182910 f360078c14f715e90e60124b4ede2be9\n\n\n  These files will probably be moved into the stable distribution on\n  its next update. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c01506861\nVersion: 3\n\nHPSBUX02351 SSRT080058 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning\n\nNOTICE: The information in this Security Bulletin should be acted upon as soon as possible. \n\nRelease Date: 2008-07-16\nLast Updated: 2008-08-06\n\nPotential Security Impact: Remote DNS cache poisoning\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP-UX running BIND. \nHP-UX B.11.11, B.11.23, B.11.31 running BIND v9.3.2 or BIND v9.2.0, HP-UX B.11.11 running BIND v8.1.2 \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics \n===============================================\nReference                         Base Vector               Base Score \nCVE-2008-1447      (AV:N/AC:L/Au:N/C:P/I:P/A:P)     7.5\n===============================================\nInformation on CVSS is documented in HP Customer Notice: HPSN-2008-002. \n\nRESOLUTION\n\nHP has provided the following software updates / patch to resolve the vulnerabilities for BIND v9.2.0 and BIND v9.3.2. \n\nCustomers running BIND v8.1.2 on HP-UX B.11.11 should upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below. \n\nThe BIND v9.2.0 update is available for download from: ftp://ss080058:ss080058@hprc.external.hp.com \n\nThe patch PHNE_37865 is available from: http://itrc.hp.com \n\nThe BIND v9.3.2 updates are available for download from: http://software.hp.com \n\n \nHP-UX Release - B.11.11 running v8.1.2\nAction - Upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below \n \nHP-UX Release - B.11.11 running v9.2.0\nBIND Depot name - BIND920v11.depot\n MD5 Sum - F6999280DE19645EF86FF52083AACD72\n \nHP-UX Release - B.11.23 running v9.2.0 \nAction - Install PHNE_37865\n\nHP-UX Release - B.11.11 running v9.3.2\nAction - Install revision C.9.3.2.3.0 or subsequent \n \nHP-UX Release - B.11.23 running v9.3.2\nAction - Install revision C.9.3.2.3.0 or subsequent\n \nHP-UX Release - B.11.31 running v9.3.2\nAction - Install revision C.9.3.2.3.0 or subsequent\n\nNote: HP is aware of performance issues with these updates / patch. All customers should test the updates / patch in their environment. HP is investigating changes to reduce the performance issues. This bulletin will be revised when new updates / patch become available. \n\nMANUAL ACTIONS: Yes - NonUpdate \nFor B.11.11 running v8.1.2, upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates \nFor B.11.11 running v9.2.0 install BIND920v11.depot \n\nPRODUCT SPECIFIC INFORMATION \nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all HP-issued Security Bulletins and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa \n\nAFFECTED VERSIONS \n\nFor BIND v8.1.2 \nHP-UX B.11.11 \n============= \nInternetSrvcs.INETSVCS-RUN \naction: upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates \n\nFor BIND v9.3.2 \nHP-UX B.11.11 \n============= \nBindUpgrade.BIND-UPGRADE \naction: install revision C.9.3.2.3.0 or subsequent \nURL: http://software.hp.com \n\nHP-UX B.11.23 \n============= \nBindUpgrade.BIND-UPGRADE \nBindUpgrade.BIND2-UPGRADE \naction: install revision C.9.3.2.3.0 or subsequent \nURL: http://software.hp.com \n\nHP-UX B.11.31 \n============= \nNameService.BIND-AUX \nNameService.BIND-RUN \naction: install revision C.9.3.2.3.0 or subsequent \nURL: http://software.hp.com \n\nFor BIND v9.2.0 \nHP-UX B.11.11 \n============= \nBINDv920.INETSVCS-BIND \naction: install revision B.11.11.01.011 or subsequent \nURL: ftp://ss080058:ss080058@hprc.external.hp.com \n\nHP-UX B.11.23 \n============= \nInternetSrvcs.INETSVCS-INETD \nInternetSrvcs.INETSVCS-RUN \nInternetSrvcs.INETSVCS2-RUN \naction: install patch PHNE_37865 or subsequent \nURL: http://itrc.hp.com \n\nEND AFFECTED VERSIONS \n\nHISTORY \nVersion:1 (rev.1) - 16 July 2008 Initial release \nVersion:2 (rev.2) - 19 July 2008 Added BIND v9.2.0 depot information \nVersion:3 (rev.3) - 06 August 2008 Updated patch location, revised BIND v9.2.0 depot information, added BIND v8.1.2 \n\nThird Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer\u0027s patch management policy. \n\nSupport: For further information, contact normal HP Services support channel. \n\nReport: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com \nIt is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information. \nTo get the security-alert PGP key, please send an e-mail message as follows:\n  To: security-alert@hp.com \n  Subject: get key\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletins via Email: \nhttp://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA\u0026langcode=USENG\u0026jumpid=in_SC-GEN__driverITRC\u0026topiccode=ITRC \nOn the web page: ITRC security bulletins and patch sign-up \nUnder Step1: your ITRC security bulletins and patches \n  - check ALL categories for which alerts are required and continue. \nUnder Step2: your ITRC operating systems \n  - verify your operating system selections are checked and save. \n\n\nTo update an existing subscription: http://h30046.www3.hp.com/subSignIn.php \nLog in on the web page: Subscriber\u0027s choice for Business: sign-in. \nOn the web page: Subscriber\u0027s Choice: your profile summary - use Edit Profile to update appropriate sections. \n\n\nTo review previously published Security Bulletins visit: http://www.itrc.hp.com/service/cki/secBullArchive.do \n\n\n* The Software Product Category that this Security Bulletin relates to is represented by the 5th and 6th characters of the Bulletin number in the title: \n\nGN = HP General SW\nMA = HP Management Agents\nMI = Misc. 3rd Party SW\nMP = HP MPE/iX\nNS = HP NonStop Servers\nOV = HP OpenVMS\nPI = HP Printing \u0026 Imaging\nST = HP Storage SW\nTL = HP Trusted Linux\nTU = HP Tru64 UNIX\nUX = HP-UX\nVV = HP VirtualVault\n \nSystem management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions. \n\n\n\"HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user\u0027s use or disregard of the information provided in this Bulletin. \n\nHewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental, special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. =========================================================== \nUbuntu Security Notice USN-622-1              July 08, 2008\nbind9 vulnerability\nCVE-2008-1447\n===========================================================\n\nA security issue affects the following Ubuntu releases:\n\nUbuntu 6.06 LTS\nUbuntu 7.04\nUbuntu 7.10\nUbuntu 8.04 LTS\n\nThis advisory also applies to the corresponding versions of\nKubuntu, Edubuntu, and Xubuntu. \n\nThe problem can be corrected by upgrading your system to the\nfollowing package versions:\n\nUbuntu 6.06 LTS:\n  libdns21                        1:9.3.2-2ubuntu1.5\n\nUbuntu 7.04:\n  libdns22                        1:9.3.4-2ubuntu2.3\n\nUbuntu 7.10:\n  libdns32                        1:9.4.1-P1-3ubuntu2\n\nUbuntu 8.04 LTS:\n  libdns35                        1:9.4.2-10ubuntu0.1\n\nIn general, a standard system upgrade is sufficient to effect the\nnecessary changes. \n\nDetails follow:\n\nDan Kaminsky discovered weaknesses in the DNS protocol as implemented\nby Bind. \n\n\nDescription\n===========\n\n== Several vulnerabilities in safe level ==\n\nMultiple errors in the implementation of safe level restrictions can be\nexploited to call \"untrace_var()\", perform syslog operations, and modify\n\"$PROGRAM_NAME\" at safe level 4, or call insecure methods at safe levels\n1 through 3. \n\n(These vulnerabilities were reported by Keita Yamaguchi.)\n\n\n== DoS vulnerability in WEBrick ==\n\nAn   error exists   in   the   usage   of   regular   expressions   in\n\"WEBrick::HTTPUtils.split_header_value()\".  This can  be  exploited  to\nconsume large amounts of CPU via a specially crafted HTTP request. \n\n(This vulnerability was reported by Christian Neukirchen.)\n\n\n== Lack of taintness check in dl ==\n\nAn error in \"DL\" can be exploited to bypass security  restrictions  and\ncall potentially dangerous functions. \n\n(This vulnerability was reported by Tanaka Akira.)\n\n\nAffected packages:\n\n   Pardus 2008:\n     ruby, all before 1.8.7_p72-16-4\n     ruby-mode, all before 1.8.7_p72-16-4\n\n   Pardus 2007:\n     ruby, all before 1.8.7_p72-16-13\n     ruby-mode, all before 1.8.7_p72-16-4\n\n\n\nResolution\n==========\n\nThere are update(s) for ruby, ruby-mode. You can update them via Package\nManager or with a single command from console:\n\n   Pardus 2008:\n     pisi up ruby ruby-mode\n\n   Pardus 2007:\n     pisi up ruby ruby-mode\n\n\nReferences\n==========\n\n   * http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby\n   * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447\n   * http://secunia.com/advisories/31430/\n\n------------------------------------------------------------------------\n\n-- \nP\u0131nar Yanarda\u011f\nhttp://pinguar.org\n\n\n_______________________________________________\nFull-Disclosure - We believe in it.  There are two ways to deal with this situation:\n\n1.  The documentation included with BIND 9 contains a\nmigration guide. Configure the BIND 8 resolver to forward queries to a BIND 9\nresolver.  Provided that the network between both resolvers is trusted,\nthis protects the BIND 8 resolver from cache poisoning attacks (to the\nsame degree that the BIND 9 resolver is protected).  It is theoretically possible to safely use\nBIND 8 in this way, but updating to BIND 9 is strongly recommended. \nBIND 8 (that is, the bind package) will be removed from the etch\ndistribution in a future point release.  Scott\nKitterman noted that python-dns is vulnerable to this predictability,\nas it randomizes neither its transaction ID nor its source port. \nTaken together, this lack of entropy leaves applications using\npython-dns to perform DNS queries highly susceptible to response\nforgery. \n\n----------------------------------------------------------------------\n\nTry a new way to discover vulnerabilities that ALREADY EXIST in your\nIT infrastructure. \n\nThe Full Featured Secunia Network Software Inspector (NSI) is now\navailable:\nhttp://secunia.com/network_software_inspector/\n\nThe Secunia NSI enables you to INSPECT, DISCOVER, and DOCUMENT\nvulnerabilities in more than 4,000 different Windows applications. \n\n----------------------------------------------------------------------\n\nTITLE:\nRed Hat update for bind\n\nSECUNIA ADVISORY ID:\nSA26195\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/26195/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSpoofing\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nRed Hat Enterprise Linux (v. 5 server)\nhttp://secunia.com/product/13652/\nRed Hat Enterprise Linux Desktop (v. 5 client)\nhttp://secunia.com/product/13653/\nRed Hat Enterprise Linux Desktop Workstation (v. 5 client)\nhttp://secunia.com/product/13651/\nRedHat Enterprise Linux AS 2.1\nhttp://secunia.com/product/48/\nRedHat Enterprise Linux AS 3\nhttp://secunia.com/product/2534/\nRedHat Enterprise Linux AS 4\nhttp://secunia.com/product/4669/\nRedHat Enterprise Linux ES 2.1\nhttp://secunia.com/product/1306/\nRedHat Enterprise Linux ES 3\nhttp://secunia.com/product/2535/\nRedHat Enterprise Linux ES 4\nhttp://secunia.com/product/4668/\nRedHat Enterprise Linux WS 3\nhttp://secunia.com/product/2536/\nRedHat Enterprise Linux WS 2.1\nhttp://secunia.com/product/1044/\nRedHat Enterprise Linux WS 4\nhttp://secunia.com/product/4670/\nRedHat Linux Advanced Workstation 2.1 for Itanium\nhttp://secunia.com/product/1326/\n\nDESCRIPTION:\nRed Hat has issued an update for bind. \n\nFor more information:\nSA26152\n\nSOLUTION:\nUpdated packages are available from Red Hat Network. \nhttp://rhn.redhat.com\n\nORIGINAL ADVISORY:\nhttp://rhn.redhat.com/errata/RHSA-2007-0740.html\n\nOTHER REFERENCES:\nSA26152:\nhttp://secunia.com/advisories/26152/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. Security Advisory (08-AUG-2008) (CVE-2008-3280)\n===============================================\n\nBen Laurie of Google\u0027s Applied Security team, while working with an\nexternal researcher, Dr. Richard Clayton of the Computer Laboratory,\nCambridge University, found that various OpenID Providers (OPs) had\nTLS Server Certificates that used weak keys, as a result of the Debian\nPredictable Random Number Generator (CVE-2008-0166). \n\nIn combination with the DNS Cache Poisoning issue (CVE-2008-1447) and\nthe fact that almost all SSL/TLS implementations do not consult CRLs\n(currently an untracked issue), this means that it is impossible to\nrely on these OPs. \n\nAttack Description\n------------------\n\nIn order to mount an attack against a vulnerable OP, the attacker\nfirst finds the private key corresponding to the weak TLS\ncertificate. He then sets up a website masquerading as the original\nOP, both for the OpenID protocol and also for HTTP/HTTPS. \n\nThere are two cases, one is where the victim is a user trying to\nidentify themselves, in which case, even if they use HTTPS to \"ensure\"\nthat the site they are visiting is indeed their provider, they will be\nunable to detect the substitution and will give their login\ncredentials to the attacker. \n\nThe second case is where the victim is the Relying Party (RP). In this\ncase, even if the RP uses TLS to connect to the OP, as is recommended\nfor higher assurance, he will not be defended, as the vast majority of\nOpenID implementations do not check CRLs, and will, therefore, accept\nthe malicious site as the true OP. \n\nMitigation\n----------\n\nMitigation is surprisingly hard. In theory the vulnerable site should\nrevoke their weak certificate and issue a new one. \n\nHowever, since the CRLs will almost certainly not be checked, this\nmeans the site will still be vulnerable to attack for the lifetime of\nthe certificate (and perhaps beyond, depending on user\nbehaviour). Note that shutting down the site DOES NOT prevent the\nattack. \n\nTherefore mitigation falls to other parties. \n\n1. Browsers must check CRLs by default. \n\n2. OpenID libraries must check CRLs. \n\n3. \n\n4. Until either 1 and 2 or 3 have been done, OpenID cannot be trusted\n   for any OP that cannot demonstrate it has never had a weak\n   certificate. \n\nDiscussion\n----------\n\nNormally, when security problems are encountered with a single piece\nof software, the responsible thing to do is to is to wait until fixes\nare available before making any announcement. However, as a number of\nexamples in the past have demonstrated, this approach does not work\nparticularly well when many different pieces of software are involved\nbecause it is necessary to coordinate a simultaneous release of the\nfixes, whilst hoping that the very large number of people involved\nwill cooperate in keeping the vulnerability secret. \n\nIn the present situation, the fixes will involve considerable\ndevelopment work in adding CRL handling to a great many pieces of\nopenID code. This is a far from trivial amount of work. \n\nThe fixes will also involve changes to browser preferences to ensure\nthat CRLs are checked by default -- which many vendors have resisted\nfor years. We are extremely pessimistic that a security vulnerability\nin OpenID will be seen as sufficiently important to change the browser\nvendors minds. \n\nHence, we see no value in delaying this announcement; and by making\nthe details public as soon as possible, we believe that individuals\nwho rely on OpenID will be better able to take their own individual\nsteps to avoid relying upon the flawed certificates we have\nidentified. \n\nOpenID is at heart quite a weak protocol, when used in its most\ngeneral form[1], and consequently there is very limited reliance upon\nits security. This means that the consequences of the combination of\nattacks that are now possible is nothing like as serious as might\notherwise have been the case. \n\nHowever, it does give an insight into the type of security disaster\nthat may occur in the future if we do not start to take CRLs\nseriously, but merely stick them onto \"to-do\" lists or disable them in\nthe name of tiny performance improvements. \n\nAffected Sites\n--------------\n\nThere is no central registry of OpenID systems, and so we cannot be\nsure that we have identified all of the weak certificates that are\ncurrently being served. The list of those we have found so far is:\n\nopenid.sun.com\nwww.xopenid.net\nopenid.net.nz\n\nNotes\n-----\n\n[1] There are ways of using OpenID that are significantly more secure\n    than the commonly deployed scheme, I shall describe those in a\n    separate article. \n\n_______________________________________________\nFull-Disclosure - We believe in it. \nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\nHosted and sponsored by Secunia - http://secunia.com/\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "PACKETSTORM",
            "id": "68039"
          },
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "73732"
          },
          {
            "db": "PACKETSTORM",
            "id": "68288"
          },
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68878"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          },
          {
            "db": "PACKETSTORM",
            "id": "58035"
          },
          {
            "db": "PACKETSTORM",
            "id": "68924"
          }
        ],
        "trust": 3.51
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-31572",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2008-1447",
            "trust": 2.2
          },
          {
            "db": "CERT/CC",
            "id": "VU#800113",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "31430",
            "trust": 1.2
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2025",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2009-0297",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2334",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2383",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2113",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2558",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2019",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2377",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2584",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2342",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2010-0622",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2166",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2051",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2092",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2029",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2384",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2268",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2052",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2549",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2197",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2009-0311",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2055",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2467",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2123",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2482",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2525",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2023",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2582",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2114",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2196",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2139",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2466",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2050",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2195",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2291",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2030",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020548",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020578",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020448",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020558",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020702",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020440",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020575",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020437",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020802",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020449",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020579",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020561",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020804",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020577",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020560",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020651",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020653",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020438",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020576",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31209",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31197",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31422",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30977",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31151",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31354",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31093",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31212",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31207",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31221",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31254",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31451",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31169",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30988",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30973",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31687",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31199",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30980",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31137",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30998",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31014",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31065",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31882",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31019",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31153",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31482",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31495",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "33178",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "33714",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31213",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31326",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31052",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31011",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31588",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31033",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31031",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30979",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31022",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31094",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31030",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31204",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30925",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31072",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31152",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31237",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31012",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "33786",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31143",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31236",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31900",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30989",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31823",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA08-190B",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA08-260A",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA08-190A",
            "trust": 1.1
          },
          {
            "db": "BID",
            "id": "30131",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "6130",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "6123",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "6122",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "26195",
            "trust": 0.9
          },
          {
            "db": "EXPLOIT-DB",
            "id": "4266",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735",
            "trust": 0.8
          },
          {
            "db": "PACKETSTORM",
            "id": "68878",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68288",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68068",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "73732",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68039",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68691",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68037",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68546",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68063",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68038",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68755",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68412",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68118",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "73060",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68502",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68061",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "74443",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "96747",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "94774",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68199",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68183",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68471",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "70207",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68036",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68500",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68360",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68473",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68129",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68554",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68543",
            "trust": 0.1
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-65607",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "69021",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "58035",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68924",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "PACKETSTORM",
            "id": "68039"
          },
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "73732"
          },
          {
            "db": "PACKETSTORM",
            "id": "68288"
          },
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68878"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          },
          {
            "db": "PACKETSTORM",
            "id": "58035"
          },
          {
            "db": "PACKETSTORM",
            "id": "68924"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "id": "VAR-200707-0675",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T22:49:38.575000Z",
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-331",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-310",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26667"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26668"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26669"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26670"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26671"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26672"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/jul/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/sep/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/sep/msg00004.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/sep/msg00005.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/30131"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/495289/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/495869/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta08-190a.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta08-190b.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta08-260a.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/800113"
          },
          {
            "trust": 1.1,
            "url": "http://www.cisco.com/en/us/products/products_security_advisory09186a00809c2168.shtml"
          },
          {
            "trust": 1.1,
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401"
          },
          {
            "trust": 1.1,
            "url": "http://support.apple.com/kb/ht3026"
          },
          {
            "trust": 1.1,
            "url": "http://support.apple.com/kb/ht3129"
          },
          {
            "trust": 1.1,
            "url": "http://support.citrix.com/article/ctx117991"
          },
          {
            "trust": 1.1,
            "url": "http://support.citrix.com/article/ctx118183"
          },
          {
            "trust": 1.1,
            "url": "http://up2date.astaro.com/2008/08/up2date_7202_released.html"
          },
          {
            "trust": 1.1,
            "url": "http://wiki.rpath.com/wiki/advisories:rpsa-2008-0231"
          },
          {
            "trust": 1.1,
            "url": "http://wiki.rpath.com/wiki/advisories:rpsa-2010-0018"
          },
          {
            "trust": 1.1,
            "url": "http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning"
          },
          {
            "trust": 1.1,
            "url": "http://www.isc.org/index.pl?/sw/bind/bind-security.php"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7dwr4j"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7ecl8q"
          },
          {
            "trust": 1.1,
            "url": "http://www.novell.com/support/viewcontent.do?externalid=7000912"
          },
          {
            "trust": 1.1,
            "url": "http://www.phys.uu.nl/~rombouts/pdnsd.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.phys.uu.nl/~rombouts/pdnsd/changelog"
          },
          {
            "trust": 1.1,
            "url": "http://www.rtpro.yamaha.co.jp/rt/faq/security/vu800113.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vmware.com/security/advisories/vmsa-2008-0014.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1603"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1604"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1605"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1619"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1623"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/6122"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/6123"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/6130"
          },
          {
            "trust": 1.1,
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-july/msg00402.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-july/msg00458.html"
          },
          {
            "trust": 1.1,
            "url": "http://security.freebsd.org/advisories/freebsd-sa-08:06.bind.asc"
          },
          {
            "trust": 1.1,
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2008-august/064118.html"
          },
          {
            "trust": 1.1,
            "url": "http://security.gentoo.org/glsa/glsa-200807-08.xml"
          },
          {
            "trust": 1.1,
            "url": "http://security.gentoo.org/glsa/glsa-200812-17.xml"
          },
          {
            "trust": 1.1,
            "url": "http://security.gentoo.org/glsa/glsa-201209-25.xml"
          },
          {
            "trust": 1.1,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c01662368"
          },
          {
            "trust": 1.1,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c01523520"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2008:139"
          },
          {
            "trust": 1.1,
            "url": "http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.caughq.org/exploits/cau-ex-2008-0002.txt"
          },
          {
            "trust": 1.1,
            "url": "http://www.caughq.org/exploits/cau-ex-2008-0003.txt"
          },
          {
            "trust": 1.1,
            "url": "http://www.doxpara.com/?p=1176"
          },
          {
            "trust": 1.1,
            "url": "http://www.doxpara.com/dmk_bo2k8.ppt"
          },
          {
            "trust": 1.1,
            "url": "http://www.nominum.com/asset_upload_file741_2661.pdf"
          },
          {
            "trust": 1.1,
            "url": "http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html"
          },
          {
            "trust": 1.1,
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037"
          },
          {
            "trust": 1.1,
            "url": "ftp://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2008-009.txt.asc"
          },
          {
            "trust": 1.1,
            "url": "http://www.openbsd.org/errata42.html#013_bind"
          },
          {
            "trust": 1.1,
            "url": "http://www.openbsd.org/errata43.html#004_bind"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a12117"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5725"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5761"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5917"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a9627"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2008-0533.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.redhat.com/support/errata/rhsa-2008-0789.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020437"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020438"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020440"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020448"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020449"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020548"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020558"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020560"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020561"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020575"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020576"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020577"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020578"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020579"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020651"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020653"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020702"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020802"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020804"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30925"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30973"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30977"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30979"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30980"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30988"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30989"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30998"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31011"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31012"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31014"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31019"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31022"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31030"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31031"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31033"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31052"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31065"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31072"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31093"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31094"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31137"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31143"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31151"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31152"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31153"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31169"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31197"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31199"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31204"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31207"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31209"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31212"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31213"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31221"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31236"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31237"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31254"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31326"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31354"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31422"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31430"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31451"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31482"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31495"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31588"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31687"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31823"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31882"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31900"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/33178"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/33714"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/33786"
          },
          {
            "trust": 1.1,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1"
          },
          {
            "trust": 1.1,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-240048-1"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-622-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-627-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2019/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2023/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2025/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2029/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2030/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2050/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2051/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2052/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2055/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2092/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2113/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2114/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2123/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2139/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2166/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2195/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2196/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2197/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2268"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2291"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2334"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2342"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2377"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2383"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2384"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2466"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2467"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2482"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2525"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2549"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2558"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2582"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2584"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2009/0297"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2009/0311"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2010/0622"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43637"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43334"
          },
          {
            "trust": 1.0,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-1447"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=121866517322103\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=123324863916385\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://www.ipcop.org/index.php?name=news\u0026file=article\u0026sid=40"
          },
          {
            "trust": 1.0,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2008\u0026m=slackware-security.539239"
          },
          {
            "trust": 1.0,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026id=762152"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141879471518471\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2008\u0026m=slackware-security.452680"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=121630706004256\u0026w=2"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/26195/"
          },
          {
            "trust": 0.8,
            "url": "http://csrc.nist.gov/publications/nistpubs/800-81/sp800-81.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/draft-ietf-dnsext-forgery-resilience"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3833"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc2827"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3704"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3013"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc4033"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/draft-ietf-tsvwg-port-randomization"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/dns_random.html"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/dns_transmit.html"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/forgery.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/microsoftdns"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/bind9dns"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/bind8dns"
          },
          {
            "trust": 0.8,
            "url": "http://www.sans.org/reading_room/whitepapers/dns/1567.php"
          },
          {
            "trust": 0.8,
            "url": "http://blogs.iss.net/archive/morednsnat.html"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/cert/jvnvu800113/"
          },
          {
            "trust": 0.8,
            "url": "http://www.cert.at/static/cert.at-0802-dns-patchanalysis.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://www.isc.org/sw/bind/bind-security.php"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/docs/bind9dns.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu%23252735/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.milw0rm.com/exploits/4266"
          },
          {
            "trust": 0.8,
            "url": "http://docs.info.apple.com/article.html?artnum=307041"
          },
          {
            "trust": 0.4,
            "url": "http://secunia.com/"
          },
          {
            "trust": 0.4,
            "url": "http://lists.grok.org.uk/full-disclosure-charter.html"
          },
          {
            "trust": 0.3,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-1447"
          },
          {
            "trust": 0.3,
            "url": "http://packages.debian.org/\u003cpkg\u003e"
          },
          {
            "trust": 0.3,
            "url": "http://security.debian.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.3,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.2,
            "url": "http://www.itrc.hp.com/service/cki/secbullarchive.do"
          },
          {
            "trust": 0.2,
            "url": "http://h30046.www3.hp.com/driveralertprofile.php?regioncode=na\u0026langcode=useng\u0026jumpid=in_sc-gen__driveritrc\u0026topiccode=itrc"
          },
          {
            "trust": 0.2,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.2,
            "url": "http://h30046.www3.hp.com/subsignin.php"
          },
          {
            "trust": 0.1,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026amp;id=762152"
          },
          {
            "trust": 0.1,
            "url": "http://www.ipcop.org/index.php?name=news\u0026amp;file=article\u0026amp;sid=40"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=123324863916385\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141879471518471\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=121866517322103\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=121630706004256\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026amp;y=2008\u0026amp;m=slackware-security.539239"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026amp;y=2008\u0026amp;m=slackware-security.452680"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/en/us/products/products_security_vulnerability_policy.html."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/go/psirt"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/web/about/security/intelligence/dns-bcp.html."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/en/us/products/prod_warranties_item09186a008088e31f.html,"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/pcgi-bin/software/tablebuild/tablebuild.pl/nr-eval"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/pcgi-bin/tablebuild.pl/acns55"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/go/psirt."
          },
          {
            "trust": 0.1,
            "url": "https://www.example.com"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/687/directory/dirtac.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/public/sw-center/sw-usingswc.shtml."
          },
          {
            "trust": 0.1,
            "url": "http://intellishield.cisco.com/security/alertmanager/cvss"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/advisories"
          },
          {
            "trust": 0.1,
            "url": "http://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-4194"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/glsa/glsa-200901-03.xml"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4194"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_arm.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_s390.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mipsel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_hppa.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mips.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_ia64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://software.hp.com"
          },
          {
            "trust": 0.1,
            "url": "http://itrc.hp.com"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.3.4-2ubuntu2.3_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.3.2-2ubuntu1.5_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.4.2-10ubuntu0.1_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.4.1-p1-3ubuntu2_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/31430/"
          },
          {
            "trust": 0.1,
            "url": "http://pinguar.org"
          },
          {
            "trust": 0.1,
            "url": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0-5.2+etch1.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0-5.2+etch1_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0-5.2+etch1.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2536/"
          },
          {
            "trust": 0.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2007-0740.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/network_software_inspector/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2535/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/13653/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/48/"
          },
          {
            "trust": 0.1,
            "url": "http://rhn.redhat.com"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/13651/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/4669/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/4668/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/13652/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/1326/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/26152/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/1306/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/4670/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2534/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/1044/"
          },
          {
            "trust": 0.1,
            "url": "https://www.xopenid.net"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-3280"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-0166"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "PACKETSTORM",
            "id": "68039"
          },
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "73732"
          },
          {
            "db": "PACKETSTORM",
            "id": "68288"
          },
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68878"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          },
          {
            "db": "PACKETSTORM",
            "id": "58035"
          },
          {
            "db": "PACKETSTORM",
            "id": "68924"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68039",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68068",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "73732",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68288",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68691",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68878",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68063",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "69021",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68037",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68546",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "58035",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68924",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2008-07-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "date": "2007-07-27T00:00:00",
            "db": "CERT/CC",
            "id": "VU#252735",
            "ident": null
          },
          {
            "date": "2008-07-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-31572",
            "ident": null
          },
          {
            "date": "2008-07-10T06:26:35",
            "db": "PACKETSTORM",
            "id": "68039",
            "ident": null
          },
          {
            "date": "2008-07-10T07:29:30",
            "db": "PACKETSTORM",
            "id": "68068",
            "ident": null
          },
          {
            "date": "2009-01-12T19:16:04",
            "db": "PACKETSTORM",
            "id": "73732",
            "ident": null
          },
          {
            "date": "2008-07-17T19:16:48",
            "db": "PACKETSTORM",
            "id": "68288",
            "ident": null
          },
          {
            "date": "2008-07-31T22:22:45",
            "db": "PACKETSTORM",
            "id": "68691",
            "ident": null
          },
          {
            "date": "2008-08-06T21:52:19",
            "db": "PACKETSTORM",
            "id": "68878",
            "ident": null
          },
          {
            "date": "2008-07-10T07:10:37",
            "db": "PACKETSTORM",
            "id": "68063",
            "ident": null
          },
          {
            "date": "2008-08-13T04:21:24",
            "db": "PACKETSTORM",
            "id": "69021",
            "ident": null
          },
          {
            "date": "2008-07-10T06:23:57",
            "db": "PACKETSTORM",
            "id": "68037",
            "ident": null
          },
          {
            "date": "2008-07-28T15:27:39",
            "db": "PACKETSTORM",
            "id": "68546",
            "ident": null
          },
          {
            "date": "2007-07-26T04:26:32",
            "db": "PACKETSTORM",
            "id": "58035",
            "ident": null
          },
          {
            "date": "2008-08-08T20:46:25",
            "db": "PACKETSTORM",
            "id": "68924",
            "ident": null
          },
          {
            "date": "2008-07-08T23:41:00",
            "db": "NVD",
            "id": "CVE-2008-1447",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-04-14T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "date": "2008-08-06T00:00:00",
            "db": "CERT/CC",
            "id": "VU#252735",
            "ident": null
          },
          {
            "date": "2020-03-24T00:00:00",
            "db": "VULHUB",
            "id": "VHN-31572",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2008-1447",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          }
        ],
        "trust": 0.2
      },
      "title": {
        "_id": null,
        "data": "Multiple DNS implementations vulnerable to cache poisoning",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "spoof",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          }
        ],
        "trust": 0.4
      }
    }